You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Salatiel Filho <sa...@gmail.com> on 2014/12/22 16:57:51 UTC
[users@httpd] Help to understand "satisfy any" on directory and location directtives
Hello, i am trying to password protect my server allowing different
users to access different locations.
The basic configuration is:
<Directory />
Options FollowSymLinks
AllowOverride None
Deny from all
</Directory>
<Directory /var/www/>
Options -Indexes FollowSymLinks MultiViews
AllowOverride None
AuthName Intranet
AuthType Basic
AuthBasicProvider file
AuthUserFile /etc/apache2/passwd
Require user user1
Satisfy any
</Directory>
<Location /restricted>
AuthName restricted
AuthType Basic
AuthBasicProvider file
AuthUserFile /etc/apache2/passwd
Require user user2
Satisfy any
</Location>
>From what i understand , since i use "deny from all" on the Directory
/, 'satisfy any" on "/var/www/" will allow the directory be accessed
if the password is correct. If i do not use "satisfy any", the
directory access will be forbidden by the parent "deny all" rule. is
this correct? At least it behaves this way.
The problem lies on the Location /restricted. If i put the "satisfy
any" no password is asked at all. Why ?
Thanks for your help.
[]'s
Salatiel
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help to understand "satisfy any" on directory and
location directtives
Posted by Salatiel Filho <sa...@gmail.com>.
On Mon, Dec 22, 2014 at 1:55 PM, Eric Covener <co...@gmail.com> wrote:
> On Mon, Dec 22, 2014 at 11:48 AM, Salatiel Filho
> <sa...@gmail.com> wrote:
>> No. It is a SCGIMount
>> SCGIMount /restricted 127.0.0.1:5033
>
> Okay, so <Directory /> is not merged. The default value of Order is
> deny,allow (allow by default) and no implicit deny directives.
Thanks for the explanation Eric.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help to understand "satisfy any" on directory and
location directtives
Posted by Eric Covener <co...@gmail.com>.
On Mon, Dec 22, 2014 at 11:48 AM, Salatiel Filho
<sa...@gmail.com> wrote:
> No. It is a SCGIMount
> SCGIMount /restricted 127.0.0.1:5033
Okay, so <Directory /> is not merged. The default value of Order is
deny,allow (allow by default) and no implicit deny directives.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help to understand "satisfy any" on directory and
location directtives
Posted by Salatiel Filho <sa...@gmail.com>.
On Mon, Dec 22, 2014 at 1:14 PM, Eric Covener <co...@gmail.com> wrote:
> On Mon, Dec 22, 2014 at 10:57 AM, Salatiel Filho
> <sa...@gmail.com> wrote:
>> The problem lies on the Location /restricted. If i put the "satisfy
>> any" no password is asked at all. Why ?
>
> Does /restricted it map to the filesystem?
No. It is a SCGIMount
SCGIMount /restricted 127.0.0.1:5033
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help to understand "satisfy any" on directory and
location directtives
Posted by Eric Covener <co...@gmail.com>.
On Mon, Dec 22, 2014 at 10:57 AM, Salatiel Filho
<sa...@gmail.com> wrote:
> The problem lies on the Location /restricted. If i put the "satisfy
> any" no password is asked at all. Why ?
Does /restricted it map to the filesystem?
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org