MaggotChild wrote: > Hi, I would like to restrict access the the basic CRUD ops via > htaccess. Requests for /item/list, /item/add etc would prompt the user > for their password. I was thinking I would create a new directory, > apply the htaccess settings, and put a dispatch script in there. But > then I would have to configure rails to look in multiple directories > for a controller (something I dont know how to do), and have two > dispatch.cgi files. What is the ideal approach to achieving security in > rails via htaccess? > > Thanks! Found the following plugin: http://blog.codahale.com/2006/05/11/basic-http-authentication-with-rails-simple_http_auth/