Hello, Problem: I need to have password protection on a directory and all of its content and subfolders. Essentially it's a "client area" of a website. In this directory will contain regular php script files to display pages, but there will also be links to PDF files, and regular html websites for beta-testing, etc. I need to be able to say http://www.site.com/client/client1/* is locked down to only those client1 users specified in a mysql database. For PHP scripts this should be fairly simple in that you can write code at the beginning to check for this. But links to PDF files, as well as running HTML files in these folders can't be handled by PHP. Is there some sort of way in Apache to specify for a directory that a certain PHP script will execute PRIOR to the requested URL being allowed? This way, in this "script", I could put the authorization code in the script file. Please Note: I cannot use .htaccess/htpasswd/htgroup files for this because I cannot have the standard little authentication box "pop" up. It needs to be done through PHP forms. Thanks very much in advance. Cory
I think the only solution is to do all the site with sessions. I don't think apache will run another script for auth. Regards