RewriteEngine on RewriteRule ^$ webroot/ [L] RewriteRule (.*) webroot/$1 [L] # Lets deny everyone -- its a clean slate! order deny,allow deny from all # Now allow local access # Localhost # allow from 127.0.0 # Local subnet # allow from 192.168.7 # Provide a mechanism for user authentication AuthType Digest AuthName "Property Manager" AuthUserFile "D:/Website/auth/pmgr.htpasswd" Require valid-user # Instead of satisfy all (too restrictive) # This allows EITHER local domain OR authenticated user satisfy any