FilesMatch / Location

am 24.01.2010 18:15:08 von Paulo Martinez

Hello List,

i wonder why this doesn't apply ...

############################################################ ###########################

In my main httpd.conf i have

Order allow,deny
Deny from all

This directive is not in any container, just straight forward in
httpd.conf

.....
User apache
Group apache

ServerAdmin root@localhost

UseCanonicalName Off

DocumentRoot "/storage/fast/www"

Options FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all

Options None
AllowOverride None
Order allow,deny
Allow from all

DirectoryIndex index.html index.html.var
AccessFileName .htaccess

Order allow,deny
Deny from all

....

############################################################ ###############

in an virtualhost container i use this

Alias /rsrcdav "/storage/fast/www/virtualhosts/example.com/htdocs/
rsrc/"

php_admin_flag engine off

DAV On
DavMinTimeout 120

ForceType text/plain

Options +Indexes -FollowSymLinks

AuthName "rsrcdav"
AuthType Basic
Order deny,allow
Allow from all
AuthUserFile /pathtofile/.htpasswd
require valid-user
satisfy all

############################################################ ###############

My question - if i access

http://example.com/rsrc/.htaccess

i get correctly

"client denied by server configuration"

if i access

http://example.com/rsrcdav/.htaccess

i get the content of the file.

Why is my not using the global directive

Order allow,deny
Deny from all

??

Thanks

Cheers

PM

------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: FilesMatch / Location

am 24.01.2010 20:39:42 von Eric Covener

On Sun, Jan 24, 2010 at 12:15 PM, Paulo Martinez
wrote:
> =A0
> =A0 =A0Order allow,deny
> =A0 =A0Deny from all
> =A0
> =A0 =A0
> =A0 =A0 =A0 =A0 Order deny,allow
> =A0 =A0 =A0 =A0 Allow from all
> http://example.com/rsrcdav/.htaccess
>
> i get the content of the file.

Location* is applied after Files*:
http://httpd.apache.org/docs/2.2/sections.html#mergin

--=20
Eric Covener
covener@gmail.com

------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: FilesMatch / Location

am 24.01.2010 23:02:41 von Paulo Martinez

Am 24.01.2010 um 20:39 schrieb Eric Covener:

> On Sun, Jan 24, 2010 at 12:15 PM, Paulo Martinez
> wrote:
>>
>> Order allow,deny
>> Deny from all
>>
>>
>> Order deny,allow
>> Allow from all
>> http://example.com/rsrcdav/.htaccess
>>
>> i get the content of the file.
>
> Location* is applied after Files*:
> http://httpd.apache.org/docs/2.2/sections.html#mergin

Okay i understand, thanks.

I changed the location- to a directory-container.

But what if i need a location-container?
In the example of my initial post, i can
avoid order,allow,deny-directives because
authorization is controlled by authentication.
But what if i need some authorization control
via order,allow,deny-directives? (the use of
files-directives inside location-containers
is not allowed)

Pragmatically or semantically i want to say:

ht-file access is forbidden. Anything else
despite specific configurations is okay.
How to accomplish this scenario?

Cheers
PM

------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org