[Plugin: Ajax Event Calendar] AEC htaccess and admin-ajax.php

Resolved perfectweb
(@perfectweb)

12 years, 1 month ago
When viewing a calendar from the public site, I am getting an http auth login request. Using Firebug, I can see that the login is prompted by a POST to admin-ajax.php. I protected my wp-admin directory and the htaccess looks like this:
```
AuthUserFile /somepath/.htpasswd
AuthName "Authorized Access Only - Please!"
AuthType Basic
require valid-user

<Files admin-ajax.php,css/install.css>
    Order allow,deny
    Allow from all
    Satisfy any
</Files>
```
Why doesn’t the <Files> directive stop the login request for admin-ajax.php?

I found 2 possible solutions in the forums that did not work. I tried putting the <Files> directive at the top of htaccess and I tried adding:
```
<IfModule mod_security.c>
SecFilterInheritance Off
</IfModule>
```
Any suggestions how to stop the login request?

http://wordpress.org/extend/plugins/ajax-event-calendar/

Viewing 1 replies (of 1 total)

Thread Starter

(@perfectweb)

The fix was to separate the 2 files I wanted to exclude into separate <Files> directives.

<Files "admin-ajax.php">
    Satisfy any
    Order allow,deny
    Allow from all
</Files>

<Files "css/install.css">
    Satisfy any
    Order allow,deny
    Allow from all
</Files>

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: Ajax Event Calendar] AEC htaccess and admin-ajax.php’ is closed to new replies.