mod_authz_user

mod_authz_user overview

mod_authz_user module provides authorization for an authenticated user. In other words the user who was successfully authenticated will be allowed or denied access to requested resource.

mod_authz_user checks the value of Require directive. The line

Require valid-user

means that the module will authorize all successfully authenticated users. And the line

Require bob john

will only allow access to bob and john users.

 

mod_authz_user directives

AuthzUserAuthoritative

Description: Sets whether authorization will be passed on to lower level modules
Syntax: AuthzUserAuthoritative On|Off
Default: AuthzUserAuthoritative On
Context: directory, .htaccess
Module: mod_authz_user

If AuthzUserAuthoritative is set to off, user authorization will be passed to lower level modules (if any).

By default, control is not passed on and an unknown user will get Authentication Required repsponse.