<-
Apache > HTTP Server > Documentation > Version 2.5 > Modules

Apache Module mod_allowhandlers

Available Languages:  en  |  es  |  fr 

Description:Easily restrict what HTTP handlers can be used on the server
Status:Experimental
Module Identifier:allowhandlers_module
Source File:mod_allowhandlers.c

Summary

This module makes it easy to restrict which handlers may be used for a request. A possible configuration would be:

<Location "/">
  AllowHandlers not server-info server-status balancer-manager ldap-status
</Location>

It also registers a handler named forbidden that simply returns 403 FORBIDDEN to the client. This can be used with directives like AddHandler.

Directives

Bugfix checklist

See also

top

AllowHandlers Directive

Description:Restrict access to the listed handlers
Syntax:AllowHandlers [not] none|handler-name [none|handler-name]...
Default:AllowHandlers all
Context:directory
Status:Experimental
Module:mod_allowhandlers

The handler names are case sensitive. The special name none can be used to match the case where no handler has been set. The special value all can be used to allow all handlers again in a later config section, even if some headers were denied earlier in the configuration merge order:

<Location "/server-status">
  AllowHandlers all
  SetHandler server-status
</Location>

Available Languages:  en  |  es  |  fr 

top

Comments

Notice:
This is not a Q&A section. Comments placed here should be pointed towards suggestions on improving the documentation or server, and may be removed by our moderators if they are either implemented or considered invalid/off-topic. Questions on how to manage the Apache HTTP Server should be directed at either our IRC channel, #httpd, on Libera.chat, or sent to our mailing lists.