Prevent Redirecting for specific REQUEST_URI

view story

http://serverfault.com – I have added a directory to the public folder of my site and placed the following .htaccess file inside it: AuthName "Restricted Area" AuthType Basic AuthUserFile /path/to/.htpasswd AuthGroupFile / Require valid-user The .htpasswd file exists and has valid content. Within the site's the public folder, there is an .htaccess file with the following rewrite rule: RewriteBase / RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . index.php With this setup, my /protected folder is not protected. If I leave the rewrite rule untouched, Apache doesn't seem to (HowTos)