I can never remember the syntax to allow access to a directory from an IP or range of IP’s without a password but falling through to using a password from all other IP’s. The below works in a .htaccess file:

AuthName "some name"
AuthUserFile /some/htaccess.file
AuthType Basic
Order Allow,Deny
Require valid-user
Allow From 127.0.0.1
Satisfy Any