LogoLogo
  • ShieldsGuard - User Guide
  • Installation Steps
    • Shields Guard Installation
    • Shields Guard SEG Installation
  • Getting Started
    • 1. General Welcome and Site Management Panel
    • 2. Overview
      • 2.1 Today's Data
      • 2.2 Country Statistics
      • 2.3 URL Statistics
      • 2.4 IP Statistics
      • 2.5 HTTP Status Statistics
    • 3. Protection
      • 3.1 DDoS Protection
        • 3.1.1 Google Recaptcha Setup
        • 3.1.2 Friendly Captcha Setup
      • 3.2 WAF – Web Application Firewall
    • 4. Security Rules
      • 4.1 BlackList & WhiteList
      • 4.2 User Agent Filtering
      • 4.3 Query String Filtering
      • 4.4 HTTP Header Filtering
      • 4.5 Block POST Values
      • 4.6 Custom Headers
      • 4.7 Block URL Requests
      • 4.8 URL Path Blocking
      • 4.9 Encrypt Path
      • 4.10 Remove Request Value
      • 4.11 Exclude Directories from Protection
    • 5. Logs
      • 5.1 Access Log
      • 5.2 Security Log
    • 6. Asset Management
      • 6.1 Asset Management
      • 6.2 Network Topology
      • 6.3 Vulnerability Scan
    • 7. Access
  • 8. DNS
  • 9. SSL
  • 10. Subdomain Manage
  • 11. Edit Page
  • ShieldsGuard SEG
    • 1. SEG Dashboard
    • 2. Reporting
    • 3. Analyzed
      • 3.1 Files
      • 3.2 URL
      • 3.3 Mail
      • 3.4 Domain
    • 4. Mail Settings
      • 4.1 File
      • 4.2 Mail Body
      • 4.3 Sender Domain
Powered by GitBook
On this page
Export as PDF
  1. Getting Started
  2. 4. Security Rules

4.9 Encrypt Path

πŸ“˜ Overview

The Encrypt Path module allows you to restrict access to specific URL paths by requiring a username and password. It functions like lightweight HTTP authentication and provides edge-level protection β€” without touching backend code.

🎯 Purpose

  • Protect internal pages, admin panels, or test environments

  • Control access to staging or early-access content

  • Secure downloadable resources with a password

  • Prevent unauthorized users from accessing private directories

πŸ› οΈ How It Works

You define:

  • Username – Only users with this username can proceed

  • Password – Must be provided to gain access

  • Encrypted Path – The full or partial URL path to protect

  • Authorization Message (optional) – Custom message shown when access is denied

When someone accesses a protected URL:

  • A login prompt appears

  • If the credentials match, the request is allowed

  • If incorrect, the user sees your custom denial message and access is blocked

βš™οΈ How to Configure Encryption

  1. Go to Security Rules > Encrypt Path

  2. Click:

    • πŸ”΅ Username to set or change the login username

    • 🟠 Password to set or change the login password

    • 🟒 Set a Message to define a custom message for failed logins (e.g., "Bu alana erişim yetkiniz yok")

    • 🟧 Specify the page to be encrypted and enter the full URL you want to protect (e.g., https://shieldsguard.com/admin)

  3. Click Encrypt to activate protection

πŸ“‹ Example Use Case

  • Protect /admin-panel with username: sg and a strong password

  • Show a denial message like: β€œYou do not have access to this area”

  • Ensure only internal users with credentials can reach the path

πŸ” Why This Matters

Encrypt Path allows secure, no-code restriction of sensitive areas:

  • Without installing plugins

  • Without modifying server configs

  • Without writing auth logic

It's ideal for developers and admins who want to quickly lock down access to certain pages.

⚠️ Best Practices & Notes

  • Use strong, non-production credentials (base64 encoded, not encrypted)

  • Always access encrypted paths over HTTPS

  • Combine with Rate Limiting to stop brute-force attempts

  • Do not use this for dynamic login pages β€” leave those to your backend authentication

🎯 Encrypt Path gives you instant, secure access control β€” with zero backend integration.

Previous4.8 URL Path BlockingNext4.10 Remove Request Value

Last updated 9 days ago