Apache AuthN and AuthZ

Apache's docs are at:

You may want to have access control (location based) as well;

One question that comes up, is how to have overlapping security. Here's a good example of how to secure the root, but allow an inner path to be open

 <Location />
	AuthType Basic
	AuthName "protected"
	AuthUserFile "....."
	require valid-user
<Location  /Api/ >
	Order Allow,Deny
	Deny from none
	Allow from all
	# This means that either the "require valid-user" from above
	#or the above order (ie everyone) will work.
	# Without it, you get prompted
	Satisfy Any