gonevps
By:
gonevps

Problem securing phpMyAdmin with htaccess & htpasswd

June 8, 2015 5.8k views
Security PHP MySQL LAMP Stack Ubuntu

Fresh Droplet :
UBUNTU 14.04.x64
LAMP 14.04

I've followed the instuctions provided on :
https://www.digitalocean.com/community/tutorials/how-to-install-and-secure-phpmyadmin-on-ubuntu-14-04

But somehow it doesn't work.
If i go to http://MY_IP_ADDRESSS/phpmyadmin/
no window prompted to input username and password.

I've check the phpmyadmin.conf, .htaccess and .htpasswd files and all of those files seems good.

phpmyadmin.conf

<Directory /usr/share/phpmyadmin>
    Options FollowSymLinks
    DirectoryIndex index.php
    AllowOverride All

.htaccess

AuthType Basic
AuthName "Restricted Files"
AuthUserFile /etc/phpmyadmin/.htpasswd
Require valid-user

.htpasswd

username:$xxx1$xxx...xxx...xxx...xxx/XXXXX

What is wrong ?

3 Answers

Never mind finally got this thing works.

We need to add the configuration to our web/domain configuration file ( domain.tld.conf )
in this case the domain.tld is my primary domain (i've use mutlple domain on 1 droplet)

Find and edit file via SSH or FTP:
/etc/apache2/sites-available/domain.tld.conf

Then add following configuration to the file :

<Directory /usr/share/phpmyadmin>
    Options FollowSymLinks
    DirectoryIndex index.php
    AllowOverride All
</Directory>

Save , restart apache

sudo service apache2 restart

Done!
Hope this can help anyone who have the same problem.

Note :
If your main domain is facebugs.com and you've set virtual host for it
then your web/domain configuration file is

/etc/apache2/sites-available/facebugs.com.conf

Welcome to DigitalOcean.

Where did you saved .htaccess and .htpasswd

Thx for info dude.

Idk why they don't say about it in tutorials.

Have another answer? Share your knowledge.