Some times in your apache’s setup you need to protect some resource but not another e.t.c. Following scenario describes a situation where you would basic protect all of the sites content except for one folder.
NOTE: this scenario does not work if you protect your site using <Location/> you need to protect <Directory>
<Directory "/some/path/to/protected/folder">
AuthType Basic
AuthName "Peek Authentication"
AuthUserFile /some/path/to/protected/folder/passwords.txt
Require user getpeek
</Directory>
<Location /allowed >
AllowOverride None
Allow from all
Satisfy any
</Location>
For more on that go here