MalcolmWI've set up a WP web site that has a folder /members with a set of WP pages underneath (obviously using permalinks).
I've set up a password file outside the web root:
/.htpasswds/public_html/wp-content/.htpasswd
I created a 401.html file in a new folder called /public_html/forms/
And finally, I created a folder called /public_html/members and put an .htaccess file in it with the following contents:
ErrorDocument 401 /public_html/forms/401.html
AuthType Basic
AuthName "member access"
AuthUserFile "/.htpasswds/public_html/wp-content/.htpasswd"
require valid-user
When I go to http://www.url.com/members I get a challenge response box, which is great. So, it's reading the htaccess file. But, if I click Cancel, I go through to the protected area anyway.
Any ideas as to why this might be, and how I can actually protect the folder fully?
Thanks!
