Httpd – How to configure Directive specific to a Location/Directory on Apache Server and not on Server Level

I am new to Apache Server Configuration.
I went through the Apache Documentation and tried to understand the Basics as well as the Directives.
But still, I am not able to figure out a configuration that I require for my current scenario.
The Version of my Apache Server is 2.4.6 running on Cent OS 7.5.

My Current "httpd.conf" file. (Contains Only the important bits)

ServerRoot "/etc/httpd"
Listen 80
ServerAdmin root@localhost
ServerName 127.0.0.1

<Directory />
    AllowOverride none
    Require all denied
</Directory>

DocumentRoot "/var/www/html"

<Directory "/var/www">
    AllowOverride None
    Require all granted
</Directory>


<Directory "/var/www/html">
    Options Indexes FollowSymLinks
    AllowOverride None
    Require all granted
</Directory>

<Location />
    AuthType shibboleth
    ShibRequireSession On
    Require valid-user
</Location>

<VirtualHost *:80>
    ServerAdmin webmaster@myweb.com
    DocumentRoot "/var/www/html/mywebsitecontent/"
    ServerName myweb
</VirtualHost>

Problem:

According to the above configuration, typing "http://myweb/" in the browser URL will invoke Shibboleth Authentication as configured in <Location> directive.
But at the same time, if I host any other website in the "/var/www/html/" folder for example say "demo" website.
Now if try to access the demo website with http://127.0.0.1/demo/index.html, it will also invoke Shibboleth Authentication because of <Location /> configuration. And I don't want that.
I want the <Location> to only work for "/var/www/html/myweb/".

What I Tried:

<Location /myweb> – Not Working
Nesting <Location> in <VirtualHost> – Not Working

I don't know what I am doing wrong.
Any idea/suggestion/solution/right direction will be greatly appreciated.

<Location> sections operate completely outside the filesystem. This has several consequences. Most importantly, <Location> directives should not be used to control access to filesystem locations. Since several different URLs may map to the same filesystem location, such access controls may by circumvented.

<Directory "/var/www/html/myweb/"> AuthType shibboleth ShibRequireSession On Require valid-user </Directory> <VirtualHost *:80> ServerAdmin webmaster@myweb.com DocumentRoot "/var/www/html/mywebsitecontent/" ServerName myweb </VirtualHost>

<VirtualHost *:80> ServerAdmin webmaster@myweb.com DocumentRoot "/var/www/html/demo/" ServerName demo </VirtualHost> <VirtualHost *:80> <Directory "/var/www/html/myweb/"> AuthType shibboleth ShibRequireSession On Require valid-user </Directory> ServerAdmin webmaster@myweb.com DocumentRoot "/var/www/html/mywebsitecontent/" ServerName myweb </VirtualHost>

Best Answer

According to https://httpd.apache.org/docs/2.4/mod/core.html#location

I think you want something closer to this:

edit: I think you want to add another specific VirtualHost for the demo site.

Note that the default VirtualHost is the one at the top. So if you're accessing the site with http://127.0.0.1/ (note that ServerName will be 127.0.0.1, not demo, not myweb) you'll get the first one.

Best Answer

Related Solutions

Ssl – Apache VirtualHost, multiple sites. 1 ssl with redirect and 1 regular http

Linux – Apache Virtual Hosts Not Working

Related Topic