I have a folder protected by Basic Authentication. There is one CGI executable within a sub-folder that I want to exclude from authentication.
I have put the following in my htaccess.
Require all granted
This seems to work for most users. However some users are still prompted to login and I dont know why. When this happens I see the following in the access logs.
111.222.333.444 - - [05/Feb/2015:13:58:56 +1000] "GET /cgi-bin/open.exe HTTP/1.1" 200 96932
111.222.333.444 - - [05/Feb/2015:13:59:02 +1000] "GET /cgi-bin/[object%20Object] HTTP/1.1" 401 381
How do I properly exclude this exe from the authentication?
This is Apache 2.4 so alot of the other questions about this are outdated.