You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Paulo Martinez <ma...@googlemail.com> on 2010/01/24 18:15:08 UTC

[users@httpd] FilesMatch / Location

Hello List,

i wonder why this doesn't apply ...

#######################################################################################

In my main httpd.conf i have

<Files ~ "^\.ht">
     Order allow,deny
     Deny from all
</Files>


This directive is not in any container, just straight forward in  
httpd.conf

....
   User apache
   Group apache

   ServerAdmin root@localhost

   UseCanonicalName Off

   DocumentRoot "/storage/fast/www"

   <Directory />
     Options FollowSymLinks
     AllowOverride None
     Order deny,allow
     Deny from all
   </Directory>

   <Directory "/storage/fast/www">
     Options None
     AllowOverride None
     Order allow,deny
     Allow from all
   </Directory>

   DirectoryIndex index.html index.html.var
   AccessFileName .htaccess

   <Files ~ "^\.ht">
     Order allow,deny
     Deny from all
   </Files>
...

###########################################################################

in an virtualhost container i use this


     Alias /rsrcdav "/storage/fast/www/virtualhosts/example.com/htdocs/ 
rsrc/"

     <Location /rsrcdav>

         php_admin_flag engine off

         DAV On
         DavMinTimeout 120

         ForceType text/plain

         Options +Indexes -FollowSymLinks

          AuthName "rsrcdav"
          AuthType Basic
          Order deny,allow
          Allow from all
          AuthUserFile /pathtofile/.htpasswd
          require valid-user
          satisfy all
     </Location>


###########################################################################


My question  - if i access

http://example.com/rsrc/.htaccess

i get correctly

"client denied by server configuration"

if i access

http://example.com/rsrcdav/.htaccess

i get the content of the file.


Why is my <location> not using the global directive

<Files ~ "^\.ht">
     Order allow,deny
     Deny from all
</Files>

??


Thanks

Cheers

PM












---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] FilesMatch / Location

Posted by Paulo Martinez <ma...@googlemail.com>.

Am 24.01.2010 um 20:39 schrieb Eric Covener:

> On Sun, Jan 24, 2010 at 12:15 PM, Paulo Martinez
> <ma...@googlemail.com> wrote:
>>  <Files ~ "^\.ht">
>>    Order allow,deny
>>    Deny from all
>>  </Files>
>>    <Location /rsrcdav>
>>         Order deny,allow
>>         Allow from all
>> http://example.com/rsrcdav/.htaccess
>>
>> i get the content of the file.
>
> Location* is applied after Files*:
> http://httpd.apache.org/docs/2.2/sections.html#mergin

Okay i understand, thanks.

I changed the location- to a directory-container.

But what if i need a location-container?
In the example of my initial post, i can
avoid order,allow,deny-directives because
authorization is controlled by authentication.
But what if i need some authorization control
via order,allow,deny-directives? (the use of
files-directives inside location-containers
is not allowed)

Pragmatically or semantically i want to say:

ht-file access is forbidden. Anything else
despite specific configurations is okay.
How to accomplish this scenario?

Cheers
PM

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] FilesMatch / Location

Posted by Eric Covener <co...@gmail.com>.

On Sun, Jan 24, 2010 at 12:15 PM, Paulo Martinez
<ma...@googlemail.com> wrote:
>  <Files ~ "^\.ht">
>    Order allow,deny
>    Deny from all
>  </Files>
>    <Location /rsrcdav>
>         Order deny,allow
>         Allow from all
> http://example.com/rsrcdav/.htaccess
>
> i get the content of the file.


Location* is applied after Files*:
http://httpd.apache.org/docs/2.2/sections.html#mergin

-- 
Eric Covener
covener@gmail.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org