How to deny access to a url within htaccess - Apache

BruceyBandit
October 16, 2020
235 views
1 vote
2 Answers

How can I deny direct access to a URL through .htaccess file?

The URL for example is

www.example.com/course/reset-password

The file is located within a course folder and the alternative and all files in that folder can allow direct access with exception of reset-password.php.

Answers

- anubhava
- October 16, 2020 at 7:34 am
- 0 votes
0
Inside corse/.htacccess you can have just this rule to block access:
```
RewriteEngine On

RewriteCond %{THE_REQUEST} /reset-password [NC]
RewriteRule ^ - [F]
```
Login or Signup to reply.

- MrWhite
- October 16, 2020 at 1:20 pm
- 0 votes
0
If you wish to deny access to a specific file (as opposed to a URL) then consider using mod_authz_core (Apache 2.4) instead of mod_rewrite. For example:
```
<Files "reset-password.php">
Require all denied
</Files>
```
This has less chance of being overridden than mod_rewrite.
Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.

How to deny access to a url within htaccess – Apache

Answers