My server used to require authentication before it would proxy to the back end. Now it passes through to the back end without authenticating. What am I missing?
I also found that I needed to move the ProxyPass to conf.d/ssl.conf or it would proxy to the back end even before the permanent redirect of http: -> https: Everything under /protected requires authentication correctly, but /trac (which should also require authentication) goes right in <Directory /> AllowOveride none Require all denied </Directory> <Directory "/var/www/html/protected"> Authtype Basic AuthName "Authentication Required" AuthUserFile "path/to/file" AuthGroupFile "/path/to/group" Require group protected </Directory> <Directory "/var/www/html/trac"> Authtype Basic AuthName "Authentication Required" AuthUserFile "path/to/file" AuthGroupFile "/path/to/group" Require group trac </Directory> <VirtualHost *:80> Servername myserver.mydomain DocumentRoot /var/www/hml Redirect permanent / https://myserver.mydomain/ </VirtualHost> (moved to conf.d/ssl.conf) ProxyPass /trac http://localhost:8000/trac ProxyPassReverse /trac http://localhost:8000/trac
