Guys,
I really appreciate the answers!
I was thinking in the same way as you provided me the answers.
- I have already locked directory browsing but not hide the files yet. Someone can not browse http://ip:port/dir/ but can view the file if http://ip:port/dir/file.html
So, could the final solution be:
1. I make a login page where user enter username and password. I check if username and password are valid and I can send a response either successful or not and save a cookie at client.
2. But how can I then grant access to some .js, .html and .css files? Before auth I want them all locked and after that unlocked.
Thank you for answers in advance!
Nejc