如何限制用户对特定URL（文件夹）的访问权限？

As long as you are using Apache, you can use an .htaccess file, placed within the directory you are trying to secure.

There are a few steps, so I will try to go through and briefly explain each:

1. You need to make sure that either AllowOverride or AuthConfig are enabled in your httpd.conf file, normally found in the apache2 or httpd directory in /etc folder on your server.

2. Create a password file outside of the web-accessible directory. You could place it in your Apache folder. Here is an example: htpasswd -c /etc/apache2/.htpasswd yourusername Of course, set yourusername to whatever username you like. It will then prompt you to enter a password, and then verify.

3. Use your favorite text editor to create and edit the .htaccess file. I use nano, so your first command would be nano .htaccess (make sure you are already in the directory).

4. Enter the following lines:

AuthType Basic Authname "My Secured Folder - Authorized Access Only" AuthUserfile /etc/apache2/.htpasswd Require user yourusername

1. Save the file and exit.

2. You may need to restart apache, but that's about all there is to it. Now whenever you try to point your browser to that folder, you will be prompted just as in your screenshot example for a username and password.

3. There are many resources on the web that most likely do a more thorough job at explaining how and what other options you have aside from a single user. You can even have it require a normal linux user, or many users. You can also assign groups of users. Take a look at these pages for a more in-depth answer:

Apache.org - Authentication and Authorization

GoDaddy How to Password-Protect a Directory using .htaccess