How to prompt only once with .htaccess for http and https?

You can't. As far as the browser is concerned, http: and https: are two different websites, and you won't get it to tell the https: site which password the user entered for the http: site. Doing so would be a serious security bug in general, and the HTTP authentication protocol is not advanced enough to allow the http: server to tell the browser, "it is OK to repeat this password for such-and-such site".(And why would you trust a security exception given to you by a mere http: site anyway?) Why don't you just do everything over https?

Or, put differently, why do you do anything that requires authentication over plain HTTP? That's not very secure. And if you have something on the https site that deserves https security, an attacker could just sniff the passwords from the insecure http connections.

Thanks. Makes sense. The .

Htaccess authentication is just temporary to lock down the whole site for a testing period. The real authentication occurs within the site over https, separate from .htaccess. – lauter1 Aug 14 at 21:04.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.