As I keep forgetting how this works, here’s an example config that will require basic auth for the “/” URI while permitting basic-authless access to “/test” for IPs listed in the
Allow from statement (other source IPs will still be able to access stuff in “/test” if proper basic authentication info is provided with the request):
# basic auth für "/" und "/test" except for IPs listed in the "Allow from..." Statement
AuthName "Authorized Users Only"
Deny from all
Allow from AAA.XXX.YYY.ZZZ