order directive

Purpose

The order directive affects the order in which deny and allow directives are evaluated within a Limit section.

Scope

This directive is only available within Limit sections.

Syntax

order ord

ord is one of the following:

deny,allow
In this case, all the deny directives are evaluated, and then all the allow directives. This basically makes the deny directives the default, and the allow directives the exceptions.
allow,deny
In this case, the allow directives are evaluated, and then all the deny directives. This makes the allow directives the default, and the deny directives the exceptions.
mutual-failure
This order is a bit unorthodox. With this order, you specify specific hosts which must be allowed or denied. Any host appearing on the allow list is allowed, and any list on the deny list is denied. Any appearing on neither is denied.

File

access.conf

Default

If no order is given, HTTPd assumes:

order deny,allow

Example

<Limit GET>
order deny,allow
deny from all
allow from .ncsa.uiuc.edu
</Limit>

In the /u/Web directory, the server evaluates the deny directive first. So, everyone is denied. It then evaluates the allow directive, and decides to allow clients from .ncsa.uiuc.edu.

Return to access configuration overview

NCSA HTTPd Development Team / httpd@ncsa.uiuc.edu / Last Modified 7-12-95