SERhttp/2 uses privileges to control access on a selector specific basis.
This method has two components:
If there is a match, SREhttp/2 will then compare the client privileges (granted to this user) against the required privileges (assigned to this selector). If they do not match, access is denied -- the client is asked to reenter a username and password.
If they do match, access is granted -- for example: the document is sent, or the script is executed.
For further details ...
HTACESS | Selector-specific |
---|---|
Pros | |
|
|
Cons | |
|
|
Caution | If you simultaneously use the HTACCESS and
the privileges based methods to control access to a given resource --
make sure that you don't have contradictory requirements. That is, make sure that a client has a username and password recognized by the appropriate HTACCESS file, and client privileges (associated with one of these usernames and passwords) that match the selector-specific required privileges. |