mod_access.html revision 1b55e9e0a3c5fb40d9e46d3e6f711516a9a807fa
bcb4e51a409d94ae670de96afb8483a4f7855294Stephan Bosch<html xmlns="http://www.w3.org/TR/xhtml1/strict"><head><!--
4eecd3e2aadb20768a60f701e329b4345d04430cTimo SirainenXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen This file is generated from xml source: DO NOT EDIT
4eecd3e2aadb20768a60f701e329b4345d04430cTimo SirainenXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen--><title>mod_access - Apache HTTP Server</title><link href="/style/manual.css" type="text/css" rel="stylesheet"/></head><body><blockquote><div align="center"><img alt="[APACHE DOCUMENTATION]" src="/images/sub.gif"/><h3>Apache HTTP Server Version 2.0</h3></div><h1 align="center">Apache Module mod_access</h1><table cellspacing="1" cellpadding="0" bgcolor="#cccccc"><tr><td><table bgcolor="#ffffff"><tr><td valign="top"><span class="help">Description:</span></td><td><description>Provides access control based on client hostname, IP
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainenaddress, or other characteristics of the client request.</description></td></tr><tr><td><a href="module-dict.html#Status" class="help">Status:</a></td><td>Base</td></tr><tr><td><a href="module-dict.html#ModuleIdentifier" class="help">Module Identifier:</a></td><td>access_module</td></tr></table></td></tr></table><h2>Summary</h2><summary>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>The directives provided by mod_access are used in <a href="core.html#directory" class="directive"><code class="directive"><Directory></code></a>, <a href="core.html#files" class="directive"><code class="directive"><Files></code></a>, and <a href="core.html#location" class="directive"><code class="directive"><Location></code></a> sections as well as
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen <code><a href="core.html#accessfilename">.htaccess</a></code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen files to control access to particular parts of the server. Access
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen can be controlled based on the client hostname, IP address, or
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen other characteristics of the client request, as captured in <a href="/env.html">environment variables</a>. The <a href="#allow" class="directive"><code class="directive">Allow</code></a> and <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives are used to
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen specify which clients are or are not allowed access to the server,
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen while the <a href="#order" class="directive"><code class="directive">Order</code></a>
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen directive sets the default access state, and configures how the
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen <a href="#allow" class="directive"><code class="directive">Allow</code></a> and <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives interact with each
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen <p>Both host-based access restrictions and password-based
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen authentication may be implemented simultaneously. In that case,
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen the <a href="core.html#satisfy" class="directive"><code class="directive">Satisfy</code></a> directive is used
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen to determine how the two sets of restrictions interact.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>In general, access restriction directives apply to all
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen access methods (<code>GET</code>, <code>PUT</code>,
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <code>POST</code>, etc). This is the desired behavior in most
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen cases. However, it is possible to restrict some methods, while
12224fcf2de6724c89f63c0f9ee857f28a270df5Timo Sirainen leaving other methods unrestricted, by enclosing the directives
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen in a <a href="core.html#limit" class="directive"><code class="directive"><Limit></code></a> section.</p>
00b10a9ca50bca190e72a19aa6571ea612701d82Aki Tuomi</summary><p><strong>See also </strong></p><ul><li><a href="core.html#satisfy" class="directive"><code class="directive">Satisfy</code></a></li><li><a href="core.html#require" class="directive"><code class="directive">Require</code></a></li></ul><h2>Directives</h2><ul><li><a href="#allow">Allow</a></li><li><a href="#deny">Deny</a></li><li><a href="#order">Order</a></li></ul><hr/><h2><a name="Allow">Allow</a> <a name="allow">Directive</a></h2><table cellpadding="1" cellspacing="0" border="0" bgcolor="#cccccc"><tr><td><table bgcolor="#ffffff"><tr><td><strong>Description: </strong></td><td>Controls which hosts can access an area of the
c57ba1788a6598993a9625bbf26a4fedca23815eTimo Sirainenserver</td></tr><tr><td><a href="directive-dict.html#Syntax" class="help">Syntax:</a></td><td><syntax> Allow from
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen [<em>host</em>|env=<em>env-variable</em>] ...</syntax></td></tr><tr><td><a href="directive-dict.html#Context" class="help">Context:</a></td><td>directory, .htaccess</td></tr><tr><td><a href="directive-dict.html#Override" class="help">Override:</a></td><td>Limit</td></tr><tr><td><a href="directive-dict.html#Status" class="help">Status:</a></td><td>Base</td></tr><tr><td><a href="directive-dict.html#Module" class="help">Module:</a></td><td>mod_access</td></tr></table></td></tr></table><usage>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>The <code class="directive">Allow</code> directive affects which hosts can
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen access an area of the server. Access can be controlled by
402e999a878e0cc41a0afb830fea0a93afc75f0dTimo Sirainen hostname, IP Address, IP Address range, or by other
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen characteristics of the client request captured in environment
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen variables.</p>
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen <p>The first argument to this directive is always
12224fcf2de6724c89f63c0f9ee857f28a270df5Timo Sirainen <code>from</code>. The subsequent arguments can take three
12224fcf2de6724c89f63c0f9ee857f28a270df5Timo Sirainen different forms. If <code>Allow from all</code> is specified, then
12224fcf2de6724c89f63c0f9ee857f28a270df5Timo Sirainen all hosts are allowed access, subject to the configuration of the
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen <a href="#deny" class="directive"><code class="directive">Deny</code></a> and <a href="#order" class="directive"><code class="directive">Order</code></a> directives as discussed
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen below. To allow only particular hosts or groups of hosts to access
bf7dc750b95039981c0e9d728f313d50cf38a156Martti Rannanjärvi the server, the <em>host</em> can be specified in any of the
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen following formats:</p>
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen <dd>Example: <code>Allow from apache.org</code><br>
b66d803de86bfb411165b3465b0d9ef64ecfe2a1Timo Sirainen Hosts whose names match, or end in, this string are allowed
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen access. Only complete components are matched, so the above
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen example will match <code>foo.apache.org</code> but it will
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen not match <code>fooapache.org</code>. This configuration will
bf7dc750b95039981c0e9d728f313d50cf38a156Martti Rannanjärvi cause the server to perform a reverse DNS lookup on the
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen client IP address, regardless of the setting of the <a href="core.html#hostnamelookups" class="directive"><code class="directive">HostnameLookups</code></a>
12224fcf2de6724c89f63c0f9ee857f28a270df5Timo Sirainen directive.</dd>
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen <dd>Example: <code>Allow from 10.1.2.3</code><br>
6a262c9bd8f57cf1e57112e0522dbdab28ae8c29Timo Sirainen An IP address of a host allowed access</dd>
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen The first 1 to 3 bytes of an IP address, for subnet
1a3f9d72e15fb931edf58f104fb7ff12d238f051Timo Sirainen restriction.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen A network a.b.c.d, and a netmask w.x.y.z. For more
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen fine-grained subnet restriction.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <dd>Example: <code>Allow from 10.1.0.0/16</code><br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Similar to the previous case, except the netmask consists of
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen nnn high-order 1 bits.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>Note that the last three examples above match exactly the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen same set of hosts.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>IPv6 addresses and IPv6 subnets can be specified as shown
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <blockquote><table cellpadding="10"><tr><td bgcolor="#eeeeee"><code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Allow from fe80::a00:20ff:fea7:ccea<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>The third format of the arguments to the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <code class="directive">Allow</code> directive allows access to the server
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen to be controlled based on the existence of an <a href="/env.html">environment variable</a>. When <code>Allow from
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen env=</code><em>env-variable</em> is specified, then the request is
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen allowed access if the environment variable <em>env-variable</em>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen exists. The server provides the ability to set environment
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen variables in a flexible way based on characteristics of the client
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen request using the directives provided by
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <code><a href="mod_setenvif.html">mod_setenvif</a></code>. Therefore, this directive can be
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen used to allow access based on such factors as the clients
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <code>User-Agent</code> (browser type), <code>Referer</code>, or
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen other HTTP request header fields.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen<blockquote><table cellpadding="10"><tr><td bgcolor="#eeeeee"><p align="center"><strong>Example:</strong></p><code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo SirainenSetEnvIf User-Agent ^KnockKnock/2.0 let_me_in<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen<Directory /docroot><br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Order Deny,Allow<br>
f77da594de6318312a7f31589c9e4c38e2b74c73Timo Sirainen Deny from all<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Allow from env=let_me_in<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen</Directory>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>In this case, browsers with a user-agent string beginning
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen with <code>KnockKnock/2.0</code> will be allowed access, and all
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen others will be denied.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen</usage><hr/><h2><a name="Deny">Deny</a> <a name="deny">Directive</a></h2><table cellpadding="1" cellspacing="0" border="0" bgcolor="#cccccc"><tr><td><table bgcolor="#ffffff"><tr><td><strong>Description: </strong></td><td>Controls which hosts are denied access to the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainenserver</td></tr><tr><td><a href="directive-dict.html#Syntax" class="help">Syntax:</a></td><td><syntax> Deny from
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen [<em>host</em>|env=<em>env-variable</em>] ...</syntax></td></tr><tr><td><a href="directive-dict.html#Context" class="help">Context:</a></td><td>directory, .htaccess</td></tr><tr><td><a href="directive-dict.html#Override" class="help">Override:</a></td><td>Limit</td></tr><tr><td><a href="directive-dict.html#Status" class="help">Status:</a></td><td>Base</td></tr><tr><td><a href="directive-dict.html#Module" class="help">Module:</a></td><td>mod_access</td></tr></table></td></tr></table><usage>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>This directive allows access to the server to be restricted
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen based on hostname, IP address, or environment variables. The
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen arguments for the <code class="directive">Deny</code> directive are
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen identical to the arguments for the <a href="#allow" class="directive"><code class="directive">Allow</code></a> directive.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen</usage><hr/><h2><a name="Order">Order</a> <a name="order">Directive</a></h2><table cellpadding="1" cellspacing="0" border="0" bgcolor="#cccccc"><tr><td><table bgcolor="#ffffff"><tr><td><strong>Description: </strong></td><td>Controls the default access state and the order in which
4eecd3e2aadb20768a60f701e329b4345d04430cTimo SirainenAllow and Deny are
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainenevaluated.</td></tr><tr><td><a href="directive-dict.html#Syntax" class="help">Syntax:</a></td><td><syntax> Order <em>ordering</em></syntax></td></tr><tr><td><a href="directive-dict.html#Default" class="help">Default:</a></td><td><code>Order Deny,Allow</code></td></tr><tr><td><a href="directive-dict.html#Context" class="help">Context:</a></td><td>directory, .htaccess</td></tr><tr><td><a href="directive-dict.html#Override" class="help">Override:</a></td><td>Limit</td></tr><tr><td><a href="directive-dict.html#Status" class="help">Status:</a></td><td>Base</td></tr><tr><td><a href="directive-dict.html#Module" class="help">Module:</a></td><td>mod_access</td></tr></table></td></tr></table><usage>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>The <code class="directive">Order</code> directive controls the default
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen access state and the order in which <a href="#allow" class="directive"><code class="directive">Allow</code></a> and <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives are evaluated.
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <dd>The <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen are evaluated before the <a href="#allow" class="directive"><code class="directive">Allow</code></a> directives. Access is
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen allowed by default. Any client which does not match a
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <a href="#deny" class="directive"><code class="directive">Deny</code></a> directive or does
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen match an <a href="#allow" class="directive"><code class="directive">Allow</code></a>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen directive will be allowed access to the server.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <dd>The <a href="#allow" class="directive"><code class="directive">Allow</code></a>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen directives are evaluated before the <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives. Access is denied
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen by default. Any client which does not match an <a href="#allow" class="directive"><code class="directive">Allow</code></a> directive or does match a
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <a href="#deny" class="directive"><code class="directive">Deny</code></a> directive will be
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen denied access to the server.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <dd>Only those hosts which appear on the <a href="#allow" class="directive"><code class="directive">Allow</code></a> list and do not appear on
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen the <a href="#deny" class="directive"><code class="directive">Deny</code></a> list are
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen granted access. This ordering has the same effect as <code>Order
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Allow,Deny</code> and is deprecated in favor of that
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen configuration.</dd>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>Keywords may only be separated by a comma; no whitespace is
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen allowed between them. Note that in all cases every <a href="#allow" class="directive"><code class="directive">Allow</code></a> and <a href="#deny" class="directive"><code class="directive">Deny</code></a> statement is evaluated.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>In the following example, all hosts in the apache.org domain
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen are allowed access; all other hosts are denied access.</p>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen<blockquote><table cellpadding="10"><tr><td bgcolor="#eeeeee"><code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Order Deny,Allow<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Deny from all<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>In the next example, all hosts in the apache.org domain are
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen allowed access, except for the hosts which are in the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen foo.apache.org subdomain, who are denied access. All hosts not
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen in the apache.org domain are denied access because the default
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen state is to deny access to the server.</p>
f77da594de6318312a7f31589c9e4c38e2b74c73Timo Sirainen<blockquote><table cellpadding="10"><tr><td bgcolor="#eeeeee"><code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Order Allow,Deny<br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>On the other hand, if the <code>Order</code> in the last
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen example is changed to <code>Deny,Allow</code>, all hosts will
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen be allowed access. This happens because, regardless of the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen actual ordering of the directives in the configuration file,
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen the <code>Allow from apache.org</code> will be evaluated last
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen and will override the <code>Deny from foo.apache.org</code>.
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen All hosts not in the <code>apache.org</code> domain will also
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen be allowed access because the default state will change to
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>The presence of an <code>Order</code> directive can affect
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen access to a part of the server even in the absence of accompanying
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <a href="#allow" class="directive"><code class="directive">Allow</code></a> and <a href="#deny" class="directive"><code class="directive">Deny</code></a> directives because of its effect
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen on the default access state. For example,</p>
1db62753d9e3b5d71018889c8ef0a3722a307455Timo Sirainen<blockquote><table cellpadding="10"><tr><td bgcolor="#eeeeee"><code>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <Directory /www><br>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen Order Allow,Deny<br>
b3126bef7460052415eea07b300d02c8eb07c1d7Timo Sirainen </Directory>
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <p>will deny all access to the <code>/www</code> directory
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen because the default access state will be set to
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen <p>The <code class="directive">Order</code> directive controls the order of access
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen directive processing only within each phase of the server's
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen configuration processing. This implies, for example, that an
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen <a href="#allow" class="directive"><code class="directive">Allow</code></a> or <a href="#deny" class="directive"><code class="directive">Deny</code></a> directive occurring in a
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <a href="core.html#location" class="directive"><code class="directive"><Location></code></a> section will
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen always be evaluated after an <a href="#allow" class="directive"><code class="directive">Allow</code></a> or <a href="#deny" class="directive"><code class="directive">Deny</code></a> directive occurring in a
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen <a href="core.html#directory" class="directive"><code class="directive"><Directory></code></a> section or
5fbccc935e3f7b916aa7c6e302a212821072e83aTimo Sirainen <code>.htaccess</code> file, regardless of the setting of the
4eecd3e2aadb20768a60f701e329b4345d04430cTimo Sirainen <code class="directive">Order</code> directive. For details on the merging
cf63dc8723b971cc80638fccbf494d961cbafc7fTimo Sirainen of configuration sections, see the documentation on <a href="/sections.html">How Directory, Location and Files sections
b932ee7fbbec6e79b777dcc7ba613b9e99f8337bTimo Sirainen</usage><hr/><h3 align="center">Apache HTTP Server Version 2.0</h3><a href="./"><img alt="Index" src="/images/index.gif"/></a><a href="../"><img alt="Home" src="/images/home.gif"/></a></blockquote></body></html>
