<Directory /> AuthType Basic AuthName Example AuthUserFile /wwwserv/cfg/user.cfg AuthGroupFile /wwwserv/cfg/group.cfg <Limit get> order allow,deny allow from all deny from .edu </Limit> </Directory> <Directory /abc> <Limit get> order allow,deny allow from .ncsa.edu deny from .inetmi.com </Limit> </Directory> <Directory /123> <Limit get> order mutual-failure allow from .inetmi.com .net deny from xyz.inetmi.com </Limit> </Directory> <Directory /abc/def> <Limit get> order deny,allow allow from hoohoo.ncsa.edu deny from .ncsa.edu </Limit> </Directory> <Directory /UserAuth> <Limit get> require group Development user FictionalUser1 </Limit> </Directory>
.eduto get documents in the root or any directory below it. The directory entries for /abc, /abc/def, /123 and /UserAuth contain overriding limit sections, but all other subdirectories on the host will use this entry.
Note that the allow entry is redundant because all hosts are allowed by default.
.eduunless they end in
.ncsa.edu, in which case they are allowed. It also disallows hosts that end in
Except for the directory /abc/def (which contains an overriding limit section), this limit will apply to all subdirectories.
mutual-failure, any previous allows and denies are ignored. In this directory (and all subdirectories), every host that ends in
.netwill be allowed except for the host
After this section is processed, any host that ends in
not be allowed unless it is
Any host that ends in
.inetmi.com will also not be allowed
(because of the limit section in the parent directory).
All other hosts
will be allowed.
.edu. Then user authorization will be applied to only allow User name/password combinations for the group
Developmentor the user