Restrict access to a directory To remove the security from AuthName "My web server" AuthUserFile /path/to/password/file AuthType Basic <limit GET POST> require valid-user Allow from all </Limit> You can override it with AuthType None Require all granted Satisfy Any [[Url Rewriting]]