in our DAV examples (in particular, POST). Also
change <Location> to <Directory> in the docs. This
particular example was not a security problem because
<Location> was being used to *extend* access, rather than
to *restrict* access, but it is better to encourage
people to use <Directory> by default.
PR: 40030
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@433694
13f79535-47bb-0310-9956-
ffa450edef68
# Allow universal read-access, but writes are restricted
# to the admin user.
- <LimitExcept GET OPTIONS>
+ <LimitExcept GET POST OPTIONS>
require user admin
</LimitExcept>
</Directory>
<example><title>Full Example</title>
DavLockDB /usr/local/apache2/var/DavLock<br />
<br />
- <Location /foo><br />
+ <Directory /usr/local/apache2/htdocs/foo><br />
<indent>
Order Allow,Deny<br />
Allow from all<br />
AuthName DAV<br />
AuthUserFile user.passwd<br />
<br />
- <LimitExcept GET OPTIONS><br />
+ <LimitExcept GET POST OPTIONS><br />
<indent>
require user admin<br />
</indent>
</LimitExcept><br />
</indent>
- </Location><br />
+ </Directory><br />
</example>
<p><module>mod_dav</module> is a descendent of Greg Stein's <a
projects / apache / commitdiff