From: Nick Kew <niq@apache.org>
Date: Wed, 1 Feb 2012 15:40:03 +0000 (+0000)
Subject: Document AllowOverride Nonfatal option
X-Git-Tag: 2.5.0-alpha~7511
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5ab582bd93e1ec25000a562c0634e1774296a4c3;p=thirdparty%2Fapache%2Fhttpd.git

Document AllowOverride Nonfatal option


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1239174 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/docs/manual/mod/core.xml b/docs/manual/mod/core.xml
index aac3144776a..4044fc409af 100644
--- a/docs/manual/mod/core.xml
+++ b/docs/manual/mod/core.xml
@@ -413,10 +413,29 @@ NoDecode option available in 2.3.12 and later.</compatibility>
       module="mod_authz_host">Deny</directive> and <directive
       module="mod_authz_host">Order</directive>).</dd>
 
-      <dt>Nonfatal</dt>
+      <dt>Nonfatal=[Override|Unknown|All]</dt>
 
       <dd>
-      Allow use of AllowOverride option to treat syntax errors in .htaccess as non-fatal.</dd>
+      Allow use of AllowOverride option to treat syntax errors in
+      .htaccess as non-fatal: instead of causing an Internal Server
+      Error, disallowed or unrecognised directives will be ignored
+      and a warning logged:
+      <ul>
+          <li><strong>Nonfatal=Override</strong> treats directives
+              forbidden by AllowOverride as non-fatal.</li>
+          <li><strong>Nonfatal=Unknown</strong> treats unknown directives
+              as non-fatal.  This covers typos and directives implemented
+              by a module that's not present.</li>
+          <li><strong>Nonfatal=All</strong> treats both the above as non-fatal.</li>
+      </ul>
+      <p>Note that a syntax error in a valid directive will still cause
+      an internal server error.</p>
+      <note class="warning"><title>Security</title>
+          Nonfatal errors may have security implications for .htaccess users.
+          For example, if AllowOverride disallows AuthConfig, users'
+          configuration designed to restrict access to a site will be disabled.
+      </note>
+      </dd>
 
       <dt>Options[=<var>Option</var>,...]</dt>