Basic Auth

This Craft CMS plugin provides HTTP Basic Authentication capabilities with flexible, condition-based rules to protect your websites. It allows precise control over which parts of your site require authentication, under what conditions, and with customizable credentials.

Craft Basic Auth enables administrators to implement security barriers based on multiple criteria including environment types (development, staging, production), domain patterns, or specific URL paths. The plugin's strength lies in its granular configuration system, allowing you to create different authentication scenarios to match your workflow and security requirements.

With this plugin, you can protect sensitive development or staging environments while simultaneously creating exceptions for critical services like webhooks or API endpoints that need uninterrupted access. Each authentication condition can be configured with unique realm names, custom credentials, and personalized failure messages. The plugin intelligently integrates with Craft's environment variables, allowing secure credential storage outside of your codebase.

Beyond basic protection, the plugin offers advanced path matching with wildcard support, allowing precise control over exactly which sections of your website require authentication. This makes it particularly valuable for multi-site installations or when specific sensitive areas need an additional security layer. All configuration is stored in Craft's project.yaml file, ensuring your authentication rules are version controlled and deployed consistently across environments.