Question

I understand how to restrict read and write access to a given topic or web based on login name. However, I can't seem to figure out how to restrict access based on IP address. Specifically, we have some topics that we want to be visible only to people coming from our site. I've tried various machinations with .htaccess clauses, but I apparently don't really understand what I'm doing, since the topics remain visible from the world.

Thanks!

Environment

-- MarkBradford - 14 May 2004

Mark, you should really pose this question on one of the Apache mailing lists, as it is through Apache (not TWiki) mechanisms that you will get this sort of control. When you find out, let us know! If there doesn't seem to be any way of doing it using Apache, then have a look at the BlackListPlugin that I guess does something similar.

-- CrawfordCurrie - 17 May 2004

Answer

If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

There is currently no option to restrict access to specific pages by IP address. You would have to write code, whcih I don't think would be too hard, and submit it as a patch. Here are some clues:

• BlackListPlugin
• $doRememberRemoteUser in TWiki.cfg

-- CrawfordCurrie - 03 Jul 2004

You can restrict access using Apache directives in .htaccess or the Apache config file. Here is an example to exclude certain IP addresses:

    Deny from 129.35.204.162 195.4.25.129

You can also allow only a certain range of IP addresses, such as:

    Allow from 129.70.133

Check the Apache documentation for details.

-- PeterThoeny - 29 Nov 2008