It seems I have completely misunderstood how htaccess file blocking works and wonder if anyone can explain how to do what I want or say if it is just not possible.
I thought you could add a code in a htaccess file which stopped anyone from accessing a file stored on your host. In so much as, if you have a name of a file and host address and put the URL into a browser the access to the file would be blocked. However, if the web page on a host needed that file it could load it to show on the web site.
It is possible to block hot links access from another server using a common code but not a computers users browser.
There is a htaccess password code which works to stop a browser finding a file which is fine. But if that is used and the sites web pages use iFrames to load other pages the password field appears.
Is it possible to pre code something so that password blocking could be used but have it self bypass when the actual hosted web pages are wanting to load another page into an iFrame.
I know I am likely not explaining this well but if you understand generally can you make a suggestion or two.