>Number: 2512 >Category: mod_access >Synopsis: <IfDenied> directive wanted >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Class: change-request >Submitter-Id: apache >Arrival-Date: Fri Jun 26 08:10:00 PDT 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: future >Environment: environment independent >Description: Currently access and denial are done via hostname or IP address/range. There's also the match of an environment variable, but that seems very limiting. I'd like to see a <IfDenied></IfDenied> directive that would allow me to then use the features of mod_auth (such as require valid-user). For instance:
<Directory /> order deny,allow deny from all allow from .research.att.com <IfDenied> AuthType Basic AuthName Private AuthUserFile /www/www/.htusers require valid-user </IfDenied> </Directory> >How-To-Repeat: >Fix: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ]
