> -----Original Message----- > From: Todd, David [mailto:[EMAIL PROTECTED] > Sent: Wednesday, February 13, 2008 9:31 PM > To: users@httpd.apache.org > Subject: Re: [EMAIL PROTECTED] What's the best place to look when > you get no answer? > > On 2008Feb13 13:18 , "Nick Kew" <[EMAIL PROTECTED]> wrote: > > > On Wed, 13 Feb 2008 13:08:53 -0500 > > "Todd, David" <[EMAIL PROTECTED]> wrote: > > > >> My question is about the Location directive, and the ordering of > >> them, with respect to Require directives and authorization. > > > > I've no idea what your question was. But if it got no answer, > > there's a strong chance it didn't make sense in the first place. > Okay, let me restate it: > > If you have nested Locations: /foo/* and /foo/bar/*, and you > need to have > different htgroups controlling them, what configuration > allows you to have > the group permissions for /foo/bar/* override those for > /foo/*? In other > words, I want general access for /foo/*, except for certain > directories > which must have tighter access controls.
If you are trying to have a nested hierarchy of basic authorization realms then that won't work. Basic auth is a single-layer mechanism and can't be nested. That is a feature of the protocol and not specific to apache. If it's something else, post your actual Location snippets so we can see what you're trying to do. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > > My experience has been that of the ordering is to define the > Location for > /foo/*, then the Location for /foo/bar/*, then no access is given to > /foo/bar/* at all. > > If the two are reversed, then it's as if the /foo/bar/* > directive isn't > there. > > > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP > Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] > " from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. The sender's company reserves the right to monitor all e-mail communications through their networks. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
