Hello! My setup is Rails 1.1 with Apache 2.x proxying the Rails stuff to
lighttpd. I know how to set up Apache to secure my entire Rails app to
require a username/password challenge. Is it possible to set up the
challenge for only parts of my application? E.g., let’s say I have a
“pub” controller whose views are accessible to anyone.
I am already implementing user authentication in my Rails app (checking
each request w/ before_filter). However, before I’m ready to go public,
I’d like an extra level of security with Apache authentication. But I’m
okay with certain sections like RSS feeds and blog entries being freely
accessible. Since a Rails URL doesn’t correspond to a physical directory
in the file system, I’m not sure how to set up the Apache access file.
Is it possible? If not, I’d like to hear other suggestions on
accomplishing the same result.
Thanks in advance.