Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
documentation:latest:writingrulesand_headers [2019/11/06 10:05]
cmaudoux [Rules on authentication level]
documentation:latest:writingrulesand_headers [2019/11/06 10:11] (current)
cmaudoux [Rules based on authentication level]
Line 68: Line 68:
   * writing a rule based on authentication level: ''​$authenticationLevel > 3''​   * writing a rule based on authentication level: ''​$authenticationLevel > 3''​
   * since 2.0, set a minimum level in virtual host options (default value for ALL access rules)   * since 2.0, set a minimum level in virtual host options (default value for ALL access rules)
-  * since 2.0.7, a minimum authentication level can be set for each URI access rule.+  * since 2.0.7, a minimum authentication level can be set for each URI access rule. Useful if URI are protected by different types of handler (AuthBasic -> level 2, Main -> level set by authentication backend).
  
 <note tip>​Instead of returning a 403 code, "​minimum level" returns user to a form that explain that a higher level is required and propose to reauthenticate himself.</​note>​ <note tip>​Instead of returning a 403 code, "​minimum level" returns user to a form that explain that a higher level is required and propose to reauthenticate himself.</​note>​