Using .htaccess to restrict access
@mettug wrote: what you can do with .htaccess. I really need to learn about that file for my site Read full topic
View ArticleUsing .htaccess to restrict access
@mettug wrote: what you can do with .htaccess. I really need to learn about that file for my site Read full topic
View ArticleUsing .htaccess to restrict access
@georgetgonzales wrote: You can block visitors in the .htaccess using the host name of the visitor. Read full topic
View ArticleUsing .htaccess to restrict access
@ahmetduzen2001 wrote: thanks alot for your information Read full topic
View ArticleUsing .htaccess to restrict access
@bpit wrote: What I wanted is to restrict access to piwik using HttpAuth whilst allowing piwik.(php|js) and OptOut which is required in germany. What worked for me: # Auth protect Everything <Files...
View ArticleUsing .htaccess to restrict access
@chriz wrote: @ bpit Its better to use require than “allow,deny” in .htaccess I think! # Auth protect Everything <Files "*"> AuthType Basic AuthName "Piwik" AuthUserFile /{PATH}/.htpasswd...
View ArticleUsing .htaccess to restrict access
@bpit wrote: Hello @chriz Thank you for your reply. You’re absolutely right. While “allow,deny” and “Allow from all” are allowed to be mixed with the new directives of apache 2.4, it is discouraged....
View ArticleUsing .htaccess to restrict access
@chriz wrote: Hello @bpit Oh, that was a copy & paste mistake. Thank you! I have edited the post. Read full topic
View ArticleUsing .htaccess to restrict access
@ranseier wrote: Updated simple .htaccess for Apache 2.4 <Files "*"> Require ip 172.16.0.0/12 Require ip 192.168.39.0/24 </Files> <Files ~ "^piwik.(js|php)$"> Require all granted...
View ArticleUsing .htaccess to restrict access
@Daniel_Dixon wrote: Hello Everyone, I got crucial tips from your answer, thanks for sharing your answers it will be helpful for me, Regards, Daniel TechTIQ Solutions, Read full topic
View ArticleUsing .htaccess to restrict access
@HuffinPuffin wrote: I hope this can help someone else in the same situation! I was trying to use Matomo Tracker Proxy as well as Matomo’s Opt Out iframe. I followed the .htaccess instructions...
View ArticleUsing .htaccess to restrict access
@fdellwing wrote: I just thought some more about this and will kindly suggest an additional change to the check. # Allow Opt-Out <Files "index.php"> <If "(%{QUERY_STRING} =~...
View ArticleUsing .htaccess to restrict access
@Lukas wrote: 6 posts were split to a new topic: Restrict API access per IP address Read full topic
View ArticleUsing .htaccess to restrict access
@augustind wrote: Firstly, thanks a lot @bpit @HuffinPuffin for your well working solution Just to let you know : it seems that in last Matomo version, the piwik.js was renamed matomo.js....
View ArticleUsing .htaccess to restrict access
@goodspeedal wrote: For the Matomo Tag Manager as we’ll, you may need to allow the “container_xxx.js” as well. <FilesMatch...
View ArticleUsing .htaccess to restrict access
@Simone_Fantini wrote: Even if this is an old post, in the How to configure Matomo for security User Guide - Analytics Platform - Matomo Docs, still this post is linked. So i have fixed the security...
View ArticleUsing .htaccess to restrict access
@mezzomedia wrote: I tried a solution inspired by the Apache 2.4 suggestion of @goodspeedal at Using .htaccess to restrict access , modified to restrict Matomo by IP and only allow specific public...
View ArticleUsing .htaccess to restrict access
@brianyam wrote: Not really sure your meaning, as the the crontab is using php to execute internal command without to go/request via the web, (neither related to Apache). So just follow the...
View ArticleUsing .htaccess to restrict access
@mezzomedia wrote: The cron job parameter --url wants a URL, correct? Manually performing the cron job outputs errors, a fragment mentioning the exact HTML content of a 403 Forbidden page (see below)....
View ArticleUsing .htaccess to restrict access
@Lukas wrote: Hi, The cron job does access the HTTP API, so I’d recommend you to look into the webserver log to see how exactly the rule is blocking the request (I know nothing about Apache, so I...
View ArticleUsing .htaccess to restrict access
@mezzomedia wrote: Thanks Lukas, I’ve checked the Apache error_log for the domain and found that the HTTP API uses IP address 0.0.0.0, so I’ve changed my .htaccess to something like: <Files "*">...
View ArticleUsing .htaccess to restrict access
@Lukas wrote: Hi @mezzomedia, Please check that the requests are still blocked for other domains. At least on some systems 0.0.0.0 matches all IP addresses, so this might allow everyone to access the...
View ArticleUsing .htaccess to restrict access
I think I’m a bit lost with this right now. Can some please post the updated full .htaccess configuration for password restricted access that fulfills all requirements? Allow external access to the...
View ArticleUsing .htaccess to restrict access
But maybe this is already too complicated. Why restrict access to all files except the listed ones and not to index.php with the shown exception only? Something like this (untested): <Files...
View ArticleUsing .htaccess to restrict access
For anyone that has issues running the command with --url=https://example.com when you have a password setup on .htaccess you can check this https://matomo.org/faq/mobile-app/faq_16336/ and use the...
View Article