Hello, i am trying to password protect my server allowing different
users to access different locations.
The basic configuration is:
<Directory />
Options FollowSymLinks
AllowOverride None
Deny from all
</Directory>
<Directory /var/www/>
Options -Indexes FollowSymLinks MultiViews
AllowOverride None
AuthName Intranet
AuthType Basic
AuthBasicProvider file
AuthUserFile /etc/apache2/passwd
Require user user1
Satisfy any
</Directory>
<Location /restricted>
AuthName restricted
AuthType Basic
AuthBasicProvider file
AuthUserFile /etc/apache2/passwd
Require user user2
Satisfy any
</Location>
>From what i understand , since i use "deny from all" on the Directory
/, 'satisfy any" on "/var/www/" will allow the directory be accessed
if the password is correct. If i do not use "satisfy any", the
directory access will be forbidden by the parent "deny all" rule. is
this correct? At least it behaves this way.
The problem lies on the Location /restricted. If i put the "satisfy
any" no password is asked at all. Why ?
Thanks for your help.
[]'s
Salatiel
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|