If you want to limit access to your Magento staging server or any directory in your virtual host, adding one of the following Apache configurations in the Directory directive will allow you to limit access with HTTP authentication and bypass that authentication by IP address.
We added the Limit directive because it appears Magento has an issue when uploading an image with HTTP Authentication with the Mac. Just replace the xxx.xxx.xxx.xxx with your IP, and if you want more than one separate each IP with a space.