Category Archives: Apache 2.4

Apache 2.4 and authentication from specific domain names and IP addresses only

I upgraded Apache from 2.2.31 to 2.4.18 on one of my servers. For one particular directory and its subtree, I needed authentication from specific domain names and IP addresses only. If the request doesn’t come from one of the whitelisted domain names or IP addresses, then Apache shouldn’t bother asking the user for authentication, but flat out refuse any service, aka “403 Forbidden”. Programmers refer this to short circuit logical AND. Have a look at C style logical AND, and the keyword andalso in Erlang. Continue reading Apache 2.4 and authentication from specific domain names and IP addresses only