If you want to password protect your admin interface to Joomla then you will find that frontend editing of Events won't work without giving your username/password each time. This is because JEvents uses some of the backend stylesheets and images from Joomla to save duplication of code.

The solution is to create a .htaccess file with the following content:

Satisfy Any
Allow from all

Place a copy of this file in the following folders:

• administrator/com_jevents/assets/
• administrator/templates/
• administrator/images/

Then you should be all sorted.

If you are using addons like the locations managers etc. then you will need to put the htaccess file in the assets folder of these components in the backend too.

Alternative Approach

Include this in your main .htaccess file

<FilesMatch "*\.(css|js)$">
    Order Allow,Deny
    Allow from all
</FilesMatch>

See http://stackoverflow.com/questions/1340001/deny-direct-access-to-all-php-files-except-index-php for more ideas