How do you make loggerhead require a login to access?

Asked by dot dot dot on 2013-09-26

I would like to secure access to loggerhead so that only authorized personnel can see what is in the repository.

I would prefer that loggerhead itself provide an authentication mechanism, but could fallback to a .htpasswd method if not available. In such case, where would this best be located?

Question information

Language:
English Edit question
Status:
Answered
For:
loggerhead Edit question
Assignee:
No assignee Edit question
Last query:
2013-09-26
Last reply:
2013-09-26

Loggerhead itself does not support this, and is not likely to. You can use .htpassword, or you can write your own middleware to replace the existing mapping loggerhead does of URL path to branch (it's not very complicated).

Looking for the simple approach... so where would one put .htaccess/.htpasswd files to lock down the service?

That's an apache question really and I've made it work before but a long time ago and I don't remember the details. I think this is a good start: http://wiki.apache.org/httpd/PasswordBasicAuth

Can you help with this problem?

Provide an answer of your own, or ask dot dot dot for more information if necessary.

To post a message you must log in.