This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
packages:apache [2013-06-11 19:31] glen |
packages:apache [2013-06-11 19:59] baggins |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Apache ====== | ====== Apache ====== | ||
- | Apache 2.4 has landed in Th on June 7, 2013, see [[http://lists.pld-linux.org/mailman/pipermail/pld-devel-en/2013-June/023560.html|announcement]]. | + | Apache 2.4 has landed in Th on June 7, 2013. See [[http://lists.pld-linux.org/mailman/pipermail/pld-devel-en/2013-June/023560.html|announcement]]. |
+ | <note important> | ||
+ | **Access control incompatible changes** | ||
- | ===== Authz compat ===== | + | All webapps have been migrated to new [[https://httpd.apache.org/docs/2.4/mod/mod_authz_host.html|mod_authz_host]] access syntax and usage of [[https://httpd.apache.org/docs/2.4/mod/mod_access_compat.html|mod_access_compat]] is strongly discouraged. |
+ | The rationale for it is that //access_compat// and //authz_host// are independent of each other and operate on separate namespaces. Main httpd configs contain only //authz_host// directives and enabling //access_compat// means allowing access to all locations/directories that are not explicitly denied by //authz_host//. | ||
- | If in Apache 2.0/2.2, you would write: | + | **Note:** |
- | <code apache> | + | In case there exist both //authz_host// **and** //access_compat// directives for a location, the **Deny** clause of **ANY** of them takes precedence (in short: **deny** always wins, regardless where it comes from). |
- | Allow from all | + | </note> |
- | </code> | + | |
+ | ===== Upgrading ===== | ||
+ | |||
+ | Detailed information about upgrading and all changes between apache 2.2 and 2.4 can be found [[https://httpd.apache.org/docs/2.4/upgrading.html|here]] | ||
- | Then having apache 2.4 and 2.x support, you can write: | ||
- | <code apache> | ||
- | <IfModule mod_authz_core.c> | ||
- | # Apache 2.4 | ||
- | Require all granted | ||
- | </IfModule> | ||
- | <IfModule !mod_authz_core.c> | ||
- | Order allow,deny | ||
- | Allow from all | ||
- | </IfModule> | ||
- | </code> |