Password Protect Web Directories in SiteWorx

You can tell your web server to ask visitors for a valid user and password login before they can view the content of all or part of your website. Setting this up manually is not easy, but it can be done in SiteWorx with just a few clicks.

  1. Log into SiteWorx.
  2. Select the File Manager.
    Select FileManager in SiteWorx
  3. Navigate through the file manager until you get to the directory that contains the directory that you wish to protect. You want to see the name of the directory you want to protect, not the content inside that directory.
  4. Check the box next to the directory you want to protect.
  5. Click on Protect in the area above the file list.
    Click the Protect Item That Appears Above the File Manager Directory and File List
  6. Just below the Protect item, you will see the interface to allow you to add or remove user logins for this directory.
     Enter One Username and Password at a Time, Select MD5 if you Want and Click Add User. You can also Remove One or All Users if you Want
    1. To add a user, type a username into the first field next to Username/Password and then type the password you want the user account to have in the second field.
      1. Click the Overwrite box if you have specified an existing username and you want to overwrite the user entry (changing the password).
      2. Check the MD5 Password box to have the password stored as an MD5 hash. This is somewhat more secure than the standard password hashing method.
      3. Click Add User to add this user (or update the existing user's entry if Overwrite is selected).
    2. To delete a single existing user account, select a user from the drop-down list next to Existing Users then click the Delete User button.
    3. If you want to delete all users and passwords and no longer protect this directory, click the Delete All Users button.

Once you've added some users and saved changes, you should visit that directory in your web browser. If everything went well, you should immediately be prompted to log in. If you fail to log in, you'll just see an error page. It is only after you successfully log in with a user account that you'll be able to view the content.

This feature only protects content on your website accessed via http or https. It will not protect that content from a user who has access to the directory via FTP or SFTP.