2.3.6 <Limit>
<Limit> defines directives that are applied only for specific HTTP protocol methods.
Description
<Limit> defines directives for access control that are applied only for specific HTTP protocol methods. You can specify multiple method names.
- Specifiable method names:
-
GET, POST, PUT, DELETE, CONNECT, and OPTIONS
(HEAD is included in GET.)
- Directives specifiable within the block:
-
-
Allow from
-
Deny from
-
AuthName
-
AuthType
-
AuthUserFile
-
AuthGroupFile
-
Order
-
Require
-
Satisfy
-
Syntax
<Limit method_name [method_name ...]> directive [directive ...] </Limit>
Locations where it can be written
httpsd.conf, <VirtualHost>, and <Directory>, and .htaccess
Example
<Directory /> <Limit PUT DELETE> ...1. Order deny,allow ...2. Deny from all ...3. Allow from .your_domain.com ...4. </Limit> ...5. </Directory>
-
Definition for PUT and DELETE methods
-
Specification of the Deny directive is evaluated before that of the Allow directive.
-
Access by the PUT and DELETE methods from all hosts is not allowed.
-
Access by the PUT and DELETE methods from your_domain.com is allowed.
-
End of definition