httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Salatiel Filho <>
Subject [users@httpd] Help to understand "satisfy any" on directory and location directtives
Date Mon, 22 Dec 2014 15:57:51 GMT
Hello, i am trying to password protect my server allowing different
users to access different locations.

The basic configuration is:

        <Directory />
                Options FollowSymLinks
                AllowOverride None
                Deny from all
        <Directory /var/www/>
                Options -Indexes FollowSymLinks MultiViews
                AllowOverride None
                AuthName Intranet
                AuthType Basic
                AuthBasicProvider file
                AuthUserFile /etc/apache2/passwd
                Require user user1
                Satisfy any

        <Location /restricted>
                AuthName restricted
                AuthType Basic
                AuthBasicProvider file
                AuthUserFile /etc/apache2/passwd
                Require user user2
                Satisfy any

>From what i understand , since i use "deny from all" on the Directory
/, 'satisfy any" on "/var/www/" will allow the directory be accessed
if the password is correct. If i do not use "satisfy any", the
directory access will be forbidden by the parent "deny all" rule. is
this correct? At least it behaves this way.
The problem lies on the Location /restricted. If i put the "satisfy
any" no password is asked at all. Why ?

Thanks for your help.


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message