Added a <LimitExcept method ...> sectioning directive that allows

the user to assign authentication control to any HTTP method that
is *not* given in the argument list; i.e., the logical negation
of the <Limit> directive.  This is particularly useful for controlling
access on methods unknown to the Apache core, but perhaps known by
some module or CGI script.

Submitted by:	 Roy Fielding and Tony Finch <dot@dotat.at>

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@82783 13f79535-47bb-0310-9956-ffa450edef68

diff --git a/docs/manual/mod/core.html b/docs/manual/mod/core.html
index 9ad12429aceca6aecbda381d1cc28645af3e355c..34039be523c826a18c227cb3550d39a37eb71ed7 100644 (file)
--- a/docs/manual/mod/core.html
+++ b/docs/manual/mod/core.html
@@ -49,6 +49,7 @@ always available.
 <LI><A HREF="#keepalive">KeepAlive</A>
 <LI><A HREF="#keepalivetimeout">KeepAliveTimeout</A>
 <LI><A HREF="#limit">&lt;Limit&gt;</A>
+<LI><A HREF="#limitexcept">&lt;LimitExcept&gt;</A>
 <LI><A HREF="#limitrequestbody">LimitRequestBody</A>
 <LI><A HREF="#limitrequestfields">LimitRequestFields</A>
 <LI><A HREF="#limitrequestfieldsize">LimitRequestFieldsize</A>
@@ -659,7 +660,8 @@ page for more details.
 
 The directory sections typically occur in the access.conf file, but they
 may appear in any configuration file. &lt;Directory&gt; directives cannot
-nest, and cannot appear in a <A HREF="#limit">&lt;Limit&gt;</A> section.
+nest, and cannot appear in a <A HREF="#limit">&lt;Limit&gt;</A> or
+<A HREF="#limitexcept">&lt;LimitExcept&gt;</A> section.
 <P>
 
 <STRONG>See also</STRONG>: <A HREF="../sections.html">How Directory,
@@ -1340,6 +1342,35 @@ If GET is used it will also restrict HEAD requests.
 
 <P><HR>
 
+<H2><A NAME="limitexcept">&lt;LimitExcept&gt; directive</A></H2>
+<!--%plaintext &lt;?INDEX {\tt LimitExcept} section directive&gt; -->
+<A
+ HREF="directive-dict.html#Syntax"
+ REL="Help"
+><STRONG>Syntax:</STRONG></A>
+ &lt;LimitExcept <EM>method method</EM> ... &gt; ... &lt;/LimitExcept&gt;<BR>
+<A
+ HREF="directive-dict.html#Context"
+ REL="Help"
+><STRONG>Context:</STRONG></A> any<BR>
+<A
+ HREF="directive-dict.html#Status"
+ REL="Help"
+><STRONG>Status:</STRONG></A> core<BR>
+<A
+ HREF="directive-dict.html#Compatibility"
+ REL="Help"
+><STRONG>Compatibility:</STRONG></A> Available in Apache 1.3.5 and later<P>
+
+&lt;LimitExcept&gt; and &lt;/LimitExcept&gt; are used to enclose a group of
+access control directives which will then apply to any HTTP access method
+<STRONG>not</STRONG> listed in the arguments; i.e., it is the opposite of a
+<A HREF="#limit">&lt;Limit&gt;</A> section and can be used to control both
+standard and nonstandard/unrecognized methods. See the documentation for 
+<A HREF="#limit">&lt;Limit&gt;</A> for more details.
+
+<P><HR>
+
 <H2><A NAME="limitrequestbody">LimitRequestBody directive</A></H2>
 <!--%plaintext &lt;?INDEX {\tt LimitRequestBody} directive&gt; -->
 <A

diff --git a/docs/manual/mod/directives.html b/docs/manual/mod/directives.html
index 1cc2813d803feb36f7dcfd26cc796f2b0e992c64..125d2904498eab7462fac4ada8c0c102eb0dcebd 100644 (file)
--- a/docs/manual/mod/directives.html
+++ b/docs/manual/mod/directives.html
@@ -123,6 +123,7 @@ of the terms used in their descriptions available.
 <LI><A HREF="core.html#keepalivetimeout">KeepAliveTimeout</A>
 <LI><A HREF="mod_negotiation.html#languagepriority">LanguagePriority</A>
 <LI><A HREF="core.html#limit">&lt;Limit&gt;</A>
+<LI><A HREF="core.html#limitexcept">&lt;LimitExcept&gt;</A>
 <LI><A HREF="core.html#limitrequestbody">LimitRequestBody</A>
 <LI><A HREF="core.html#limitrequestfields">LimitRequestFields</A>
 <LI><A HREF="core.html#limitrequestfieldsize">LimitRequestFieldsize</A>