You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Norman Timmler <li...@inlet-media.de> on 2006/02/08 18:52:52 UTC
[users@httpd] Access restriction with nested Locations
Hello,
i have strange problems to get some nested Location directives to work.
What i want is:
<Location ~ ^/>
# Only accessible if username and password is supplied
</Location>
<Location ~ ^/public>
# Accessible for all with no restrictions
</Location>
<Location ~ ^/my_soap/(api|wsdl)>
# Accessible only for local machine (localhost)
</Location>
Can somebody please provide me the right order/deny/satisfy directives
to use in the specific Location tags?
Here is what i have so far and is always asking for authorization:
<Location ~ ^/>
Order deny,allow
Deny from all
AuthType Basic
AuthName "authenticate"
AuthUserFile /etc/apache2/.htpasswd
AuthGroupFile /etc/apache2/.htgroups
Require group admins
Satisfy Any
# WORKS
</Location>
<Location ~ ^/public>
Allow from all
Satisfy Any
# FAILURE: AUTHORIZATION REQUIRED
</Location>
<Location ~ ^/my_soap/(api|wsdl)>
Allow from .mydomain.de server1
Satisfy Any
# FAILURE: AUTHORIZATION REQUIRED
</Location>
Thanks.
Norman
--
Norman Timmler
http://blog.inlet-media.de
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Access restriction with nested Locations
Posted by Norman Timmler <li...@inlet-media.de>.
Forgot to mention that i am running Apache2.
Am Mittwoch, den 08.02.2006, 18:52 +0100 schrieb Norman Timmler:
> Hello,
>
> i have strange problems to get some nested Location directives to work.
> What i want is:
>
> <Location ~ ^/>
> # Only accessible if username and password is supplied
> </Location>
>
> <Location ~ ^/public>
> # Accessible for all with no restrictions
> </Location>
>
> <Location ~ ^/my_soap/(api|wsdl)>
> # Accessible only for local machine (localhost)
> </Location>
>
> Can somebody please provide me the right order/deny/satisfy directives
> to use in the specific Location tags?
>
> Here is what i have so far and is always asking for authorization:
>
> <Location ~ ^/>
> Order deny,allow
> Deny from all
> AuthType Basic
> AuthName "authenticate"
> AuthUserFile /etc/apache2/.htpasswd
> AuthGroupFile /etc/apache2/.htgroups
> Require group admins
> Satisfy Any
> # WORKS
> </Location>
> <Location ~ ^/public>
> Allow from all
> Satisfy Any
> # FAILURE: AUTHORIZATION REQUIRED
> </Location>
> <Location ~ ^/my_soap/(api|wsdl)>
> Allow from .mydomain.de server1
> Satisfy Any
> # FAILURE: AUTHORIZATION REQUIRED
> </Location>
>
> Thanks.
> Norman
>
--
Norman Timmler
http://blog.inlet-media.de
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Access restriction with nested Locations
Posted by Norman Timmler <li...@inlet-media.de>.
Am Mittwoch, den 08.02.2006, 13:16 -0500 schrieb Joshua Slive:
> On 2/8/06, Norman Timmler <li...@inlet-media.de> wrote:
>
> > <Location ~ ^/>
> > Order deny,allow
> > Deny from all
> > AuthType Basic
> > AuthName "authenticate"
> > AuthUserFile /etc/apache2/.htpasswd
> > AuthGroupFile /etc/apache2/.htgroups
> > Require group admins
> > Satisfy Any
> > # WORKS
> > </Location>
> > <Location ~ ^/public>
> > Allow from all
> > Satisfy Any
> > # FAILURE: AUTHORIZATION REQUIRED
> > </Location>
> > <Location ~ ^/my_soap/(api|wsdl)>
> > Allow from .mydomain.de server1
> > Satisfy Any
> > # FAILURE: AUTHORIZATION REQUIRED
> > </Location>
>
> Try putting "Order Deny,Allow" in all the <Location> containers.
>
> Joshua.
Thanks Joshua, but this has no effects. More ideas?
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
--
Norman Timmler
http://blog.inlet-media.de
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Access restriction with nested Locations
Posted by Joshua Slive <jo...@slive.ca>.
On 2/8/06, Norman Timmler <li...@inlet-media.de> wrote:
> <Location ~ ^/>
> Order deny,allow
> Deny from all
> AuthType Basic
> AuthName "authenticate"
> AuthUserFile /etc/apache2/.htpasswd
> AuthGroupFile /etc/apache2/.htgroups
> Require group admins
> Satisfy Any
> # WORKS
> </Location>
> <Location ~ ^/public>
> Allow from all
> Satisfy Any
> # FAILURE: AUTHORIZATION REQUIRED
> </Location>
> <Location ~ ^/my_soap/(api|wsdl)>
> Allow from .mydomain.de server1
> Satisfy Any
> # FAILURE: AUTHORIZATION REQUIRED
> </Location>
Try putting "Order Deny,Allow" in all the <Location> containers.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org