http-method

Edit online

Use the http-method stanza entry to define the ACL permission for a particular HTTP method.

Syntax

http-method = permission

Description

The http-method entry defines the mapping of an HTTP request method to an ACL permission bit.

Options

  • T
  • c
  • g
  • m
  • d
  • b
  • s
  • v
  • a
  • B
  • t
  • R
  • r
  • x
  • l
  • N
  • W
  • A

You can also create custom permissions in custom action groups, for example, [my-action-group]t. See Custom permissions in custom action groups.

Usage

This stanza entry is optional. If this stanza is empty, the Web Reverse Proxy defaults to the following ACL bits:


PUT => m 
DELETE => d
All else (GET,POST .. ) => r

The <default> entry defines the permissions that are required for any methods that are not explicitly specified elsewhere in this stanza. A <default> entry is required in each [http-method-perms] stanza if any methods are defined in the stanza. In other words, an [http-method-perms] stanza can either be empty or contains entries that include the <default> method.

You can define multiple ACL bits for a method. For example, POST = Ax.

If multiple ACL bits are defined for a method, then the user must be granted each of those permissions in the effective ACL for the protected object.

Default value

None. By default, this stanza is not defined.

Example


<default> = r
GET = r
HEAD = T
PUT = m
POST = Ax
DELETE = d
TRACE = [my-action-group]t