More Secure Sub-directory

Cantor, Scott cantor.2 at
Fri Jan 27 00:08:23 GMT 2012

On 1/26/12 6:51 PM, "Aaron Roots" <aaron.roots at> wrote:
>The Location block directives override the .htaccess directives:
>So the choices are:
>* Use a location block in your apache conf for the more secured directory
>(may not want user accessing apache conf or continually needing to action
>requests on their behalf )
>* Use the initial directive in a Directory block instead of Location (but
>this may break things like mod_rewrite)
>* Use the XML permission format

Since the latter wouldn't work with mod_auth or various other options, and
since the behavior and require options here are Apache's standard behavior
(not specific to using SAML), it seems like either the first two are just
accepted as the standard practice, or we're missing some additional trick
to do it.

-- Scott

More information about the users mailing list