I have some subdomains for non-public access.
I.e. they are visible from outside, but protected by ip-rules and/or login/password.
Can I make rules for allowing the challenges to be seen, either based on the filename/directory of the challenge or by looking at the source ip (no, they will change someday) or the user-agent?
I’m runing apache/linux