"Adi Fairbank" <[EMAIL PROTECTED]> wrote:
> Dave Kaufman wrote:
> >
> > $Location{"blah"} = {
> > require => "group payer_manager, payer_group demo"
> > };
> > should do the trick.
>
> I wrote:
> > Thanks, that fixed it.
>
> Actually, no that didn't fix it!
> $r->requires
> returns
> [{ 'group' => "payer_manager, payer_group demo"}]
d'oh! we have the syntax wrong to begin with.
http://www.apache.org/docs/mod/core.html#require says:
Require directive
The allowed syntaxes are:
Require user userid userid ...
^^^^
Only the named users can access the directory.
Require group group-name group-name ...
^^^^^
Only users in the named groups can access the directory.
Require valid-user
All valid users can access the directory.
implying that you *must* specify either
'user' username username ...
or 'group' groupname groupname ...
or 'valid-user'
but the concept of specifying access based on a combination of
username-or-group-memership seems to be undefined.
i thought maybe the satisfy directive might help, ala:
satisfy any
require group simpson
require user bart
but the satisy docs say its only for mixing allow & deny type access restrictions with
auth-based restrictions...
i could have sworn i had successfully done this in the past though, allowing a whole
group plus one named user... (but maybe i just added him to the group in question)
perhaps someone else can enlighten us...
-dave
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
