William and matt, thank you for your help. I thought it had something to do with the 'satisfy all' but didn't know exactly what changes I'd have to make. For those reading the archives, to solve my problem, I added a second 'satisfy all' line in the <Directory /var/www/centernet/htdocs/staffonly> section, before the 'require valid-user'. Thanks, again. -Kevin -----Original Message----- From: William A. Rowe, Jr. [mailto:wrowe@xxxxxxxxxxxxx] Sent: Thursday, March 08, 2007 1:50 PM To: users@xxxxxxxxxxxxxxxx Subject: Re: How to handle nested authorization requirements? Zembower, Kevin wrote: > > In the first part of the centernet VirtualHost section, I restrict users > to either be in specific IP address ranges, or enter the password in > /var/www/centernet/users. I want to put an additional restriction on > viewing the files in /var/www/centernet/htdocs/staffonly/. However, when > I test this from inside the specified IP address ranges, it never asks > me to authenticate to view the files in /staffonly/. Because you hadn't used Satisfy All Satisfy Any means 'are you ok with the remote client IP or the auth?' Satisfy All means 'are both ok?' --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|