I am trying to set up www-cal ( incidentally, a great utility for calendering
found at http://www.eol.ists.ca/~dunlop/ ). The thing is that I am trying to
protect the directory from the http method POST only! GET should still work.
This allow admin staff to update calendar and other users may only browse.
My .htaccess file looks like this in /home/WWW/www-cal/
The file .htpasswd was created using the htpasswd program from apache with a
single user. Using the above produces a login dialog box and I always fail to
login no matter what. The access.conf was set protects the same directory but
only with the following statement
. (some other stuff)
allow from all
I've also tried various other combinations. IN fact, lots of it and only
<Limit GET> works but that forces everyone to login when only admin should be
asked to key password when attempting to change the calendar via POST. Using
<Limit GET POST> also works but does not help really. Putting two statements
allow from all
cannot work since now it ask for password on entry and will always fail
to login!(As the first case). I've also tried removing .htaccess and using the
global access.conf to protect the directory concerned which is
"/home/WWW/www-cal" directly below my document root of "/home/WWW"
but that gives the same symptom as again the first case. Things are really weird
here. It's getting really weird here. I've even tried removing the section under
access.conf refering to the same directory so that no conflict is possible.
Still no cigar. The server isn't broken since <Limit GET> works fine.
Has anyone tried the same thing before? PLease help! Thank you.