Protect phpmyadmin with http basic auth

Trickster · September 27, 2021, 2:51pm

Hi,
I’d like to protect phpmyadmin with http basic auth.
So what was done:

I added to file /etc/phpmyadmin/apache.conf
after line <Directory /usr/share/phpmyadmin>

AuthType Basic
AuthName "Restricted Access"
AuthUserFile /usr/share/phpmyadmin/passwd
Require valid-user

After that new password was generated
htpasswd -c /usr/share/phpmyadmin/passwd user
Configuration test
apachectl configtest
Apache was restarted
systemctl restart apache2 && systemctl status apache2

As a result I don’t see authorization window. Can anybody please help me, where is my error?

eris · September 27, 2021, 4:32pm

/etc/phpmyadmin/apache.conf is not loaded

Use /etc/apache2/conf.d/conf.d/phpmyadmin.conf instead

Trickster · September 27, 2021, 6:08pm

Great! Thanks, now it works as it should!

eris · September 27, 2021, 6:13pm

Please be aware that we sometimes renew the config file

For example 1.4.15 release …

Trickster · September 27, 2021, 6:47pm

So update process will overwrite config. Right?

eris · September 27, 2021, 7:24pm

Usually we don’t overwrite the phpmyadmin config how ever in this case due to some security “remarks” it makes for us easier to overwrite 1 config file then sed in all the changes.

system · October 27, 2021, 7:25pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.