SubscribeSetEnvIf Referer ^http://yoursite.com/private let_me_inYou'd have to be able to save the "gateway" link on pages at salesforce.com. Someone could sneak past this, but they'd have to know the Referer URL and be smart enough to fake it.
SetEnvIf Referer ^http://salesforce.com/private/yoursite/URL let_me_in
<Directory /docroot>
Order Deny,Allow
Deny from all
Allow from env=let_me_in
AuthType Basic
AuthUserFile /usr/local/apache/conf/htpasswd.users
AuthName "allow users by password or from salesforce.com"
Require valid-user
Satisfy any
</Directory>
You are not logged in, either login or create an account to post comments
posted by zengargoyle at 10:53 AM on July 23