From: Joshua Slive Date: Tue, 22 Aug 2006 17:07:54 +0000 (+0000) Subject: Allow the typical non-DAV methods to be unrestricted X-Git-Tag: 2.3.0~2150 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=86319c427decd99903aa849eb61f4881d6429602;p=thirdparty%2Fapache%2Fhttpd.git Allow the typical non-DAV methods to be unrestricted in our DAV examples (in particular, POST). Also change to in the docs. This particular example was not a security problem because was being used to *extend* access, rather than to *restrict* access, but it is better to encourage people to use by default. PR: 40030 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@433694 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/conf/extra/httpd-dav.conf.in b/docs/conf/extra/httpd-dav.conf.in index 9f47eff479c..d58725dab44 100644 --- a/docs/conf/extra/httpd-dav.conf.in +++ b/docs/conf/extra/httpd-dav.conf.in @@ -28,7 +28,7 @@ Alias /uploads "@@ServerRoot@@/uploads" # Allow universal read-access, but writes are restricted # to the admin user. - + require user admin diff --git a/docs/manual/mod/mod_dav.xml b/docs/manual/mod/mod_dav.xml index 717189cf0f0..e387c40b6a0 100644 --- a/docs/manual/mod/mod_dav.xml +++ b/docs/manual/mod/mod_dav.xml @@ -79,7 +79,7 @@ Full Example DavLockDB /usr/local/apache2/var/DavLock

- <Location /foo>
+ <Directory /usr/local/apache2/htdocs/foo>
Order Allow,Deny
Allow from all
@@ -89,13 +89,13 @@ AuthName DAV
AuthUserFile user.passwd

- <LimitExcept GET OPTIONS>
+ <LimitExcept GET POST OPTIONS>
require user admin
 </LimitExcept>
 - </Location>
+ </Directory>

mod_dav is a descendent of Greg Stein's