<li><img alt="" src="../images/down.gif" /> <a href="#systemsettings">Protecting System Settings</a></li>
<li><img alt="" src="../images/down.gif" /> <a href="#protectserverfiles">Protect Server Files by Default</a></li>
<li><img alt="" src="../images/down.gif" /> <a href="#watchyourlogs">Watching Your Logs</a></li>
+<li><img alt="" src="../images/down.gif" /> <a href="#merging">Merging of configuration sections</a></li>
</ul></div>
<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
<div class="section">
</Files>
</code></p></div>
+ </div><div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
+<div class="section">
+<h2><a name="merging" id="merging">Merging of configuration sections</a></h2>
+
+
+
+ <p> The merging of configuration sections is complicated and sometimes
+ directive specific. Always test your changes when creating dependencies
+ on how directives are merged.</p>
+
+ <p> For modules that don't implement any merging logic, such as
+ <code class="directive">mod_access_compat</code>, the behavior in later sections
+ depends on whether the later section has any directives
+ from the module. The configuration is inherited until a change is made,
+ at which point the configuration is <em>replaced</em>.</p>
</div></div>
<div class="bottomlang">
<p><span>Available Languages: </span><a href="../en/misc/security_tips.html" title="English"> en </a> |
</section>
+ <section id="merging">
+
+ <title>Merging of configuration sections</title>
+
+ <p> The merging of configuration sections is complicated and sometimes
+ directive specific. Always test your changes when creating dependencies
+ on how directives are merged.</p>
+
+ <p> For modules that don't implement any merging logic, such as
+ <directive>mod_access_compat</directive>, the behavior in later sections
+ depends on whether the later section has any directives
+ from the module. The configuration is inherited until a change is made,
+ at which point the configuration is <em>replaced</em> and not merged.</p>
+ </section>
+
</manualpage>
cases. However, it is possible to restrict some methods, while
leaving other methods unrestricted, by enclosing the directives
in a <code class="directive"><a href="../mod/core.html#limit"><Limit></a></code> section.</p>
+
+ <div class="note"> <h3>Merging of configuration sections</h3>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </div>
+
</div>
<div id="quickview"><h3 class="directives">Directives</h3>
<ul id="toc">
with <code>KnockKnock/2.0</code> will be allowed access, and all
others will be denied.</p>
+ <div class="note"> <h3>Merging of configuration sections</h3>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </div>
+
+
</div>
<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
<div class="directive-section"><h2><a name="Deny" id="Deny">Deny</a> <a name="deny" id="deny">Directive</a></h2>
of configuration sections, see the documentation on <a href="../sections.html">How Directory, Location and Files sections
work</a>.</p>
+ <div class="note"> <h3>Merging of configuration sections</h3>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </div>
+
+
</div>
<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>
<div class="directive-section"><h2><a name="Satisfy" id="Satisfy">Satisfy</a> <a name="satisfy" id="satisfy">Directive</a></h2>
<p>Since version 2.0.51 <code class="directive">Satisfy</code> directives can
be restricted to particular methods by <code class="directive"><a href="../mod/core.html#limit"><Limit></a></code> and <code class="directive"><a href="../mod/core.html#limitexcept"><LimitExcept></a></code> sections.</p>
+ <div class="note"> <h3>Merging of configuration sections</h3>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </div>
+
+
<h3>See also</h3>
<ul>
<li><code class="directive"><a href="#allow">Allow</a></code></li>
cases. However, it is possible to restrict some methods, while
leaving other methods unrestricted, by enclosing the directives
in a <directive module="core" type="section">Limit</directive> section.</p>
+
+ <note> <title>Merging of configuration sections</title>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </note>
+
</summary>
<seealso><directive module="mod_authz_core">Require</directive></seealso>
<p>In this case, browsers with a user-agent string beginning
with <code>KnockKnock/2.0</code> will be allowed access, and all
others will be denied.</p>
+
+ <note> <title>Merging of configuration sections</title>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </note>
+
</usage>
</directivesynopsis>
of configuration sections, see the documentation on <a
href="../sections.html">How Directory, Location and Files sections
work</a>.</p>
+
+ <note> <title>Merging of configuration sections</title>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </note>
+
</usage>
</directivesynopsis>
be restricted to particular methods by <directive module="core"
type="section">Limit</directive> and <directive module="core" type="section"
>LimitExcept</directive> sections.</p>
+
+ <note> <title>Merging of configuration sections</title>
+ <p>When any directive provided by this module is used in a new
+ configuration section, no directives provided by this module are
+ inherited from previous configuration sections.</p>
+ </note>
+
</usage>
<seealso><directive module="mod_access_compat">Allow</directive></seealso>
<seealso><directive module="mod_authz_core">Require</directive></seealso>
container takes the place of the <code class="directive"><a href="./mod/core.html#directory"><Directory></a></code> container in the processing
order.</p>
- <p>Later sections override earlier ones.</p>
+ <p>Later sections override earlier ones, however each module is responsible
+ for interpeting what form this override takes. A later configuration section
+ with directives from a given module might cause a conceptual "merge" of some
+ directives, all directives, or a complete replacement of the modules
+ configuration with the module defaults and directives explicitly listed in
+ the later context.</p>
<div class="note"><h3>Technical Note</h3>
There is actually a
type="section">Directory</directive> container in the processing
order.</p>
- <p>Later sections override earlier ones.</p>
+ <p>Later sections override earlier ones, however each module is responsible
+ for interpeting what form this override takes. A later configuration section
+ with directives from a given module might cause a conceptual "merge" of some
+ directives, all directives, or a complete replacement of the modules
+ configuration with the module defaults and directives explicitly listed in
+ the later context.</p>
<note><title>Technical Note</title>
There is actually a
projects / apache / commitdiff