Commit ea161d7c authored by Roy T. Fielding's avatar Roy T. Fielding
Browse files

Added a <LimitExcept method ...> sectioning directive that allows 

the user to assign authentication control to any HTTP method that
is *not* given in the argument list; i.e., the logical negation
of the <Limit> directive.  This is particularly useful for controlling
access on methods unknown to the Apache core, but perhaps known by
some module or CGI script.

Submitted by:	 Roy Fielding and Tony Finch <dot@dotat.at>


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@82783 13f79535-47bb-0310-9956-ffa450edef68
parent 5ad1fbf8

docs/manual/mod/core.html

+32 −1
Original line number Diff line number Diff line
@@ -49,6 +49,7 @@ always available. 
<LI><A HREF="#keepalive">KeepAlive</A>

<LI><A HREF="#keepalivetimeout">KeepAliveTimeout</A>

<LI><A HREF="#limit">&lt;Limit&gt;</A>

<LI><A HREF="#limitexcept">&lt;LimitExcept&gt;</A>

<LI><A HREF="#limitrequestbody">LimitRequestBody</A>

<LI><A HREF="#limitrequestfields">LimitRequestFields</A>

<LI><A HREF="#limitrequestfieldsize">LimitRequestFieldsize</A>
@@ -659,7 +660,8 @@ page for more details. 


The directory sections typically occur in the access.conf file, but they

may appear in any configuration file. &lt;Directory&gt; directives cannot

nest, and cannot appear in a <A HREF="#limit">&lt;Limit&gt;</A> section.

nest, and cannot appear in a <A HREF="#limit">&lt;Limit&gt;</A> or

<A HREF="#limitexcept">&lt;LimitExcept&gt;</A> section.

<P>



<STRONG>See also</STRONG>: <A HREF="../sections.html">How Directory,
@@ -1340,6 +1342,35 @@ If GET is used it will also restrict HEAD requests. 


<P><HR>



<H2><A NAME="limitexcept">&lt;LimitExcept&gt; directive</A></H2>

<!--%plaintext &lt;?INDEX {\tt LimitExcept} section directive&gt; -->

<A

 HREF="directive-dict.html#Syntax"

 REL="Help"

><STRONG>Syntax:</STRONG></A>

 &lt;LimitExcept <EM>method method</EM> ... &gt; ... &lt;/LimitExcept&gt;<BR>

<A

 HREF="directive-dict.html#Context"

 REL="Help"

><STRONG>Context:</STRONG></A> any<BR>

<A

 HREF="directive-dict.html#Status"

 REL="Help"

><STRONG>Status:</STRONG></A> core<BR>

<A

 HREF="directive-dict.html#Compatibility"

 REL="Help"

><STRONG>Compatibility:</STRONG></A> Available in Apache 1.3.5 and later<P>



&lt;LimitExcept&gt; and &lt;/LimitExcept&gt; are used to enclose a group of

access control directives which will then apply to any HTTP access method

<STRONG>not</STRONG> listed in the arguments; i.e., it is the opposite of a

<A HREF="#limit">&lt;Limit&gt;</A> section and can be used to control both

standard and nonstandard/unrecognized methods. See the documentation for 

<A HREF="#limit">&lt;Limit&gt;</A> for more details.



<P><HR>



<H2><A NAME="limitrequestbody">LimitRequestBody directive</A></H2>

<!--%plaintext &lt;?INDEX {\tt LimitRequestBody} directive&gt; -->

<A

docs/manual/mod/directives.html

+1 −0
Original line number Diff line number Diff line
@@ -123,6 +123,7 @@ of the terms used in their descriptions available. 
<LI><A HREF="core.html#keepalivetimeout">KeepAliveTimeout</A>

<LI><A HREF="mod_negotiation.html#languagepriority">LanguagePriority</A>

<LI><A HREF="core.html#limit">&lt;Limit&gt;</A>

<LI><A HREF="core.html#limitexcept">&lt;LimitExcept&gt;</A>

<LI><A HREF="core.html#limitrequestbody">LimitRequestBody</A>

<LI><A HREF="core.html#limitrequestfields">LimitRequestFields</A>

<LI><A HREF="core.html#limitrequestfieldsize">LimitRequestFieldsize</A>