The 4D Web Server has certain URLs that can be accessed to manage and view information about the server. These URLs are /4DSTATS, /4DHTMLSTATS, /4DCACHECLEAR and /4DWEBTEST. When there is no password set for 4D's password system, these URLs are accessible by all users. A developer may have a password system seperate from 4D's password system but still want these URLs to be hidden from the standard user. In order to require authentication for access to these URLs the following steps can be followed on your binary database:

 1. In the toolbox, define a Designer password
    - This password can be anything as it is temporary
 2. Restart 4D and login as Administrator
 3. Go back to the toolbox and create a new user "Webuser" and define a secure password for that user.
 4. Open the database structure settings and go to the "Web" settings tab
 5. Go to Options(I) within this tab
 6. Click the option "Password with BASIC Protocol" and set the Generic Web User to “Webuser”
    - This is the option that causes authentication to be required when requesting /4DSTATS, /4DHTMLSTATS, /4DCACHECLEAR and /4DWEBTEST

 7. Restart 4D and login as Designer with the password set in step 1. Go back to the toolbox and clear the Designer password.

The process is much simpler in project mode.

 1. Go to the toolbox and create a new user "Webuser" and define a secure password for that user.
 2. Open the database structure settings and go to the "Web" settings tab
 3. Go to Options(I) within this tab
 4. Click the option "Password with BASIC Protocol" and set the Generic Web User to “Webuser”

Now the browser should prompt a login when a user tries to access these URLs.