Contributor(s): Than Garson
There are different methods for password protecting a section depending on whether the files to be accessed are HTML or XML. If the section is a folder containing HTML files, one can use place a .htaccess file in the folder to password protect any access to that folder. However, if they are XML files, this cannot be done because we use the show.php and showEssay.php scripts to make calls to the Saxon Servlet which is running on another port. The SaxonServlet then tries to access the XML files on the regular port 80 (http://orion.lib.virginia.edu/). If the folder is password protected, the SaxonServlet is not allowed to view the XML document and it "crashes". Thus, another method has to be employed for password protected folders with XML in it. This method uses cookies and is not absolutely secure, but secure enough to deter the average user.
Because we are shifting to the exclusive use of XML, this process will be described first. However, it has only been done in one particular instance, namely the JIATS journal pages. It will need to be modified and generalized to work with general XML files. I will need to work this up, but for now am documenting what I did for the journal.