I serve a HTML page, which presents within my users-authentication system.
The HTML page should be unreachable when non-authenticated client tries to access it.
So
