Received: (qmail 46018 invoked by uid 501); 18 Sep 2000 21:38:11 -0000 Message-Id: <20000918213811.46017.qmail@locus.apache.org> Date: 18 Sep 2000 21:38:11 -0000 From: Oleg Titov Reply-To: oleg.titov@bigfoot.com To: submit@bugz.apache.org Subject: .htaccess, AuthType and order directive X-Send-Pr-Version: 3.110 >Number: 6549 >Category: mod_access >Synopsis: .htaccess, AuthType and order directive >Confidential: no >Severity: critical >Priority: medium >Responsible: apache >State: closed >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Mon Sep 18 14:40:00 PDT 2000 >Closed-Date: Mon Sep 18 14:41:46 PDT 2000 >Last-Modified: Mon Sep 18 14:41:46 PDT 2000 >Originator: oleg.titov@bigfoot.com >Release: 1.3.12-2 >Organization: >Environment: Linux cicataqro.ipn.mx 2.2.16-3smp #1 SMP Mon Jun 19 17:37:04 EDT 2000 i686 unknown >Description: Hello I would like to protect a directory with password and host limitation. I put Auth* directives and allow directive. I am trying to access the protected directory from adrian.cicataqro.ipn.mx computer. In error log appears that [Mon Sep 18 16:16:55 2000] [alert] [client 148.204.99.132] /home/httpd/html/vu/books/.htaccess: allow not allowed here If I remove order directive from .htaccess file everything works fine. Below you'll find content of .htaccess file # # restricted access to Virtual University # Books Section # AuthType Basic AuthName "Libros sobre Educacion a Distancia. Collecion Privada." AuthUserFile /etc/httpd/conf/users.conf AuthGroupFile /etc/httpd/conf/groups.conf require user ced2000 allow from .ipn.mx Satisfy all In /etc/httpd/conf/httpd.conf I have # # restricted access to Virtual University # AllowOverride AuthConfig Options >How-To-Repeat: http://www.cicataqro.ipn.mx/vu/books/ (currently I have removed order directive so it is working) >Fix: >Release-Note: >Audit-Trail: State-Changed-From-To: open-closed State-Changed-By: marc State-Changed-When: Mon Sep 18 14:41:46 PDT 2000 State-Changed-Why: Please see http://www.apache.org/docs/mod/mod_access.html#allow, which clearly describes that "AllowOverride limit" is necessary for the "allow" directive. >Unformatted: [In order for any reply to be added to the PR database, you need] [to include in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]