Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 98937 invoked from network); 31 Jan 2005 15:44:57 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 31 Jan 2005 15:44:57 -0000 Received: (qmail 17840 invoked by uid 500); 31 Jan 2005 15:44:41 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 17815 invoked by uid 500); 31 Jan 2005 15:44:40 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 17800 invoked by uid 99); 31 Jan 2005 15:44:40 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: local policy) Received: from smtpout.comendo.dk (HELO smtpout.comendo.dk) (195.245.210.77) by apache.org (qpsmtpd/0.28) with ESMTP; Mon, 31 Jan 2005 07:44:38 -0800 Received: from smtpscanner.comendo.dk (smtpscanner.comendo.dk [195.245.210.73]) by smtpout.comendo.dk (Postfix) with ESMTP id 4BDCA68CB65 for ; Mon, 31 Jan 2005 16:43:38 +0100 (CET) Received: from travelstart.se (Not Verified[195.84.144.23]) by smtpscanner.comendo.dk with {MailFence} (v{4.0}) (COMSND) id ; Mon, 31 Jan 2005 16:44:35 +0100 Received: from [10.47.17.180] (account andreas [10.47.17.180] verified) by travelstart.se (CommuniGate Pro SMTP 4.0.6) with ESMTP id 4944251 for users@httpd.apache.org; Mon, 31 Jan 2005 16:36:19 +0100 Message-ID: <41FE52A0.9010905@travelstart.se> Date: Mon, 31 Jan 2005 16:45:36 +0100 From: Andreas Andersson User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: users@httpd.apache.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked Subject: [users@httpd] authication best practice X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Hi! I've been doing authentication with htaccess for some years but now I have to "design" a somewhat more complex system and thought I should ask for your help before trying to re-invent the wheel. I have a testserver to which I must restrict users in different groups. Some groups should have access to all parts of the testserver while some other groups only should have access to "their" parts. Like this. / (access only to the group "internal") /site_one (access only to the group "internal" or "site_one") /site_two (access only to the group "internal" or "site_two") /all_other_sites (access only to the group "internal") I would like to write a rule saying "restrict to internal group but also allow groups found in .htaccess in that directory". -- Andreas Andersson IT Dept. Travelstart Nordic andreas@travelstart.se http://www.travelstart.se --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org