DW:
- Bug fix with Config.onoff.enable_purge flag. The PURGE method is
kind of dangerous. It would be allowed by default for most access
control configurations because its not mentioned specifically.
Thus, we don't allow any PURGE requests unless the PURGE method
is mentioned in the access list configuration. Before the fix we
set the enable flag, but it never got cleared upon a reconfigure.
Also users complain that defining an ACL that is never used in
an access list shouldn't trip this flag. With the fix, the PURGE
method must be referenced in the 'http_access' list, and we make
sure to clear the flag on reconfigure.