Return-Path: 
 <users-return-60096-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: (qmail 29162 invoked from network); 8 Feb 2006 18:17:10 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 8 Feb 2006 18:17:10 -0000
Received: (qmail 75134 invoked by uid 500); 8 Feb 2006 18:16:58 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 75122 invoked by uid 500); 8 Feb 2006 18:16:58 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 75111 invoked by uid 99); 8 Feb 2006 18:16:58 -0000
Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 08 Feb 2006 10:16:57 -0800
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (asf.osuosl.org: domain of jslive@gmail.com designates
 64.233.184.205 as permitted sender)
Received: from [64.233.184.205] (HELO wproxy.gmail.com) (64.233.184.205)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 08 Feb 2006 10:16:57 -0800
Received: by wproxy.gmail.com with SMTP id 55so118076wri
        for <users@httpd.apache.org>; Wed, 08 Feb 2006 10:16:36 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
        s=beta; d=gmail.com;
        h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
        b=NcrV//dwxj2q9hGn+wC+o/zI3lINjwebLSGe9VDIkbO2yWH5yBgU6qpEciV3ibkMnuUKFl0S9lKULbkDq0npAS3OLUILfe56z3v41nBpHuI5edrfuqIuti6Xa1rJWz9nwm1QMXi2ozNSxh+3tcp8Uzpe4y6zvQtLmcwcu5TrPpY=
Received: by 10.64.10.9 with SMTP id 9mr1396531qbj;
        Wed, 08 Feb 2006 10:16:35 -0800 (PST)
Received: by 10.64.253.13 with HTTP; Wed, 8 Feb 2006 10:16:34 -0800 (PST)
Message-ID: <e498c1660602081016u14e531ccsbead8ceb61bea6dc@mail.gmail.com>
Date: Wed, 8 Feb 2006 13:16:34 -0500
From: Joshua Slive <joshua@slive.ca>
Sender: jslive@gmail.com
To: users@httpd.apache.org
In-Reply-To: <1139421172.9313.29.camel@localhost.localdomain>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <1139421172.9313.29.camel@localhost.localdomain>
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: Re: [users@httpd] Access restriction with nested Locations
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

On 2/8/06, Norman Timmler <lists@inlet-media.de> wrote:

>   <Location ~ ^/>
>     Order deny,allow
>     Deny from all
>     AuthType Basic
>     AuthName "authenticate"
>     AuthUserFile /etc/apache2/.htpasswd
>     AuthGroupFile /etc/apache2/.htgroups
>     Require group admins
>     Satisfy Any
>     # WORKS
>   </Location>
>   <Location ~ ^/public>
>     Allow from all
>     Satisfy Any
>     # FAILURE: AUTHORIZATION REQUIRED
>   </Location>
>   <Location ~ ^/my_soap/(api|wsdl)>
>     Allow from .mydomain.de server1
>     Satisfy Any
>     # FAILURE: AUTHORIZATION REQUIRED
>   </Location>

Try putting "Order Deny,Allow" in all the <Location> containers.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org