I have a directory called users which contains sub directories for each user. E.g.

Question

0

Asked: May 27, 20262026-05-27T13:04:54+00:00 2026-05-27T13:04:54+00:00

I have a directory called users which contains sub directories for each user. E.g.

0

I have a directory called users which contains sub directories for each user. E.g. my directory structure might look like:

users/
    .htaccess
    UserAccess.php
    foo/
        baz.txt
    bar/
        passwd.txt

I want to prevent users from accessing other users files. Therefore, I wrote a php script which checks the path and prints the file contents or not. The problem is that the script is not being run, but rather apache is trying to access the files directly.

My .htaccess in the users/ directory is:


RewriteEngine on
RewriteRule ^users/ UserAccess.php

A user would then try to access http://mywebsite.com/users/username/file. E.g. http://mywebsite.com/users/foo/baz.txt.

The key point is that http://mywebsite.com/users/username/ is a REAL directory.

How do I fix this to accomplish what I want?

EDIT:


RewriteEngine on
RewriteRule . UserAccess.php

doesnt work either.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-27T13:04:55+00:00

Editorial Team

2026-05-27T13:04:55+00:00Added an answer on May 27, 2026 at 1:04 pm

The answer was that the subfolder (foo in the example) had permissions 700. This caused a 403 response before the rewrite rule was parsed. I changed the permissions to 701 and everything worked.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a directory called users which contains sub directories for each user. E.g.

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply