On Tue, Aug 19, 2014 at 9:09 AM, Jeff Trawick <[email protected]> wrote:
> On Tue, Aug 19, 2014 at 9:04 AM, Eric Covener <[email protected]> wrote: > >> On Tue, Aug 19, 2014 at 8:59 AM, Jeff Trawick <[email protected]> wrote: >> > I'm +0.75 or so for having to explicitly enable the use of >> CGIPassHeader in >> > htaccess. >> >> Is there an existing pattern for something to need to be explicitly >> named in AllowOverrideList? But would that also basically guarantee >> nobody who needs this would be able to set it? >> > > Oops, I better go learn how AllowOverrideList works first ;) I > forgot/didn't know about that one. > CGIPassHeader could be allowed in htaccess if the httpd admin has specified "AllowOverride ... AuthConfig ..."* or "AllowOverrideList CGIPassHeader" in the main config. Make sense? *Only auth headers are currently suppressed, so this directive could be named CGIPassAuthHeader and have a more visual tie to "AuthConfig". > > >> >> -- >> Eric Covener >> [email protected] >> > > > > -- > Born in Roswell... married an alien... > http://emptyhammock.com/ > > -- Born in Roswell... married an alien... http://emptyhammock.com/
