If you have host-based as well as user-based access protection on a resource, the default behavior of Apache is to require the requester to satisfy both controls. But assume that you want to mix host-based and user-based protection and allow access to a resource if either method succeeds. You can do so using the
satisfy directive. You can set the
satisfy directive to
All (this is the default) or
Any. When set to
All, all access control methods must be satisfied before the resource is served. If
satisfy is set to
Any, the resource is served if any access condition is met.
Here’s another access control example, again using the previous
server-status example. This time, you combine access methods so all users from the ...