hey.
i'm trying to password protect a wiki site, or rather i don't want to
password protect it yet, but i want to make sure that i know how to if i
ever need to resist an attack on the site.
i only want to password protect the normally open "edit" ability, i still
want people to be able to view all the pages.
using moinmoin a link to read a page looks like this:
http://www.spack.org/wiki/index.cgi/SamplePage
and then to edit it, it looks like this:
http://www.spack.org/wiki/index.cgi/SamplePage?action=edit
i thought i could use the LocationMatch directive to match this with
something like:
<LocationMatch "action=edit">
AuthName "Edit Page"
AuthUserFile /etc/apache/htpasswd
require valid-user
</LocationMatch>
but it doesn't seem to work and i don't generate any errors. my only
thought is that maybe the LocationMatch directive won't match get
parameters but there is no mention of this restriction at apache.org which
says it should match the entire url.
does anyone have any idea what the problem is and how else i might
accomplish this?
adam.
