Apache Deny but allow to sub Location

Question

I am using Apache2.2 as the front end to a tomcat server. I want to restrict access to a location however allow all access to a sub-location but am having some trouble.

What I currently have is:

<Location "/location/sub">  
    AllowOverride None  
    Order Allow,deny  
    Allow from All  
</Location>  

<Location "/location/">  
 AllowOverride None  
 Order Deny, Allow  
 Deny from All  
 Allow from 10.10.10.10   
</Location>

The second rule appears to be working but is overriding the first rule.

Does anyone know what I am doing wrong or suggest way to do it?

Thanks

score 4 · Answer 1 · answered Jun 16 '16 at 07:20

4

<Location> directives are processed in the order that they appear in the configuration files, so your second rule takes precedence. Just change the order of the rules in .conf file.

answered Jun 16 '16 at 07:20

Dusan Bajic

10,249
3
33
43

Hi Dusan I have tried your suggestion but it doesn't work – mdizzy Jun 16 '16 at 07:23
1

What is the apache version? – Dusan Bajic Jun 16 '16 at 07:26

score 2 · Accepted Answer · answered Jun 21 '16 at 00:22

Looks like I have got it working. I moved the order of the rules as Dusan suggested but it still didn't work. However, removing the

AllowOverride None
Order Allow,deny

from the rule seems to have fixed it.

So now I have the following which is working :

<Location "/location/">  
 AllowOverride None  
 Order Deny, Allow  
 Deny from All  
 Allow from 10.10.10.10   
</Location>

<Location "/location/sub">  
    Allow from All  
</Location>

Apache Deny but allow to sub Location

2 Answers2