Since the rules get evaluated top to bottom and stoping at first match I
should work because the second directory statement seems to work just
fine and it gets evaluated after the first location statement.
but well even the authenticate statement is, just in my opinion, wrong
on so many lvls and it also works ...
could someone that is more skilled in httpd.conf give me some insight here?