stalmok · December 5, 2012 15:03
diff --git a/restrict-access b/restrict-access
 /**
 * Original post: http://www.thebigblob.com/how-to-restrict-user-access-to-content-in-folders-using-php-and-apache-htaccess-files/
 */

 # The .htaccess file
 RewriteEngine on
 RewriteBase /
 RewriteCond %{REQUEST_URI} ^\/(path\/to\/some\/folder|dummy)\/.*$
 RewriteRule !^((.*.php)|(.*\/))$ authorize.php

 # The PHP file (authorize.php)
 <?php
 // Perform authentication and authorization here
 if($hasAccessToFolder)
 {
 	// Get the file
 	if(file_exists($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI']))
 	{
 		// Open the file for reading
 		$fp = fopen($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI'], 'r');
 
 		// Set mime type to header
 		header('Content-type: '.mime_content_type($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI']));
 
 		// Send the contents of the file the browser
 		fpassthru($fp);
 		fclose($fp);
 	}
 	else
 	{
 		// File not found
 		die('File not found');
 	}
 }
 else
 {
 	die('Access denined');
 }
	/**
	* Original post: http://www.thebigblob.com/how-to-restrict-user-access-to-content-in-folders-using-php-and-apache-htaccess-files/
	*/

	# The .htaccess file
	RewriteEngine on
	RewriteBase /
	RewriteCond %{REQUEST_URI} ^\/(path\/to\/some\/folder\|dummy)\/.*$
	RewriteRule !^((..php)\|(.\/))$ authorize.php

	# The PHP file (authorize.php)
	<?php
	// Perform authentication and authorization here
	if($hasAccessToFolder)
	{
	// Get the file
	if(file_exists($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI']))
	{
	// Open the file for reading
	$fp = fopen($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI'], 'r');

	// Set mime type to header
	header('Content-type: '.mime_content_type($_SERVER['DOCUMENT_ROOT'].$_SERVER['REQUEST_URI']));

	// Send the contents of the file the browser
	fpassthru($fp);
	fclose($fp);
	}
	else
	{
	// File not found
	die('File not found');
	}
	}
	else
	{
	die('Access denined');
	}