Hi,
I want to use the <Limit> directive to apply one set of
constraints for POST and not have those constraints apply for
all other methods.
The constraints are not part of the Apache httpd core. They
come from another module (Shibboleth).
I first tried this:
<Directory /path/to/cgi/scripts >
AuthType shibboleth
Require shibboleth
<Limit POST>
ShibRequestSetting requireSession 1
Require valid-user
</Limit>
</Directory>
I find that the 'ShibRequestSetting requireSession 1', valid
for the module, appears to be applied to the entire
<Directory> configuration directive and not just to POSTs.
Is that because <Limit> only "masks" the 'Require'
configuration directive and nothing else?
Thanks,
Scott K
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|