I have two kinds of content I'm looking to protect, ASP pages, as well as extra files (excel, word, etc). I have everything in a private folder on our webserver (shared host), and am using .htaccess to password protect them, which works great. However, I'm getting complaints about the login box, and the inability to "log out". I've read the Apache documentation, and know that the answer on that end is "tough". However, I was wondering if anybody knew of an easy (relatively speaking) way to use ASP to password protect the ASP files (this I have) AND pass those same credentials to .htaccess, for when somebody wants to access an excel file. The end goal here being if somebody bookmarks the excel file, they are still forced to login to view it.

Casey