Password protecting your Joomla administrator folder

  • Published by
    George Papadakis
  • Last modified
    12 November 2013
  • Up to date
    Yes
  • Profile concerned
    End user
  • Concerns
    Component
  • Since Version
    1.5.4
  • Voting
    Average rating
    1 vote
  • Favourites

You may want to protect your joomla administrator folder via a password to make your site security more tight

  1. Create your .htaccess  & . htpasswd files
    ... or use a tool to create these like Admin Tools joomla extension
    ... nothing more is need for FLEXIcontent v2.1.1+


  2. Then you need to allow access to some backend stuff
    [for FLEXIcontent v2.1.0 or earlier]
    edit the file :
    administrator/.htaccess
    and append to it:
SetEnvIf Request_URI  "administrator/components/com_flexicontent/assets"  allow
Order allow,deny
Allow from env=allow
Satisfy any

Explanation:

FLEXIcontent frontend views make backend [b]URL references[/b] to files of type:
- CSS
- JS
- images

these are placed in the folder: administrator/components/com_flexicontent/assets
so you only need to exclude this folder

-- Note: usage of any other backend PHP files is done at server side so they are not "URL references", so you do not need to allow access to folder: administrator/components/com_flexicontent/