http-method

Use the http-method stanza entry to define the ACL permission for a particular HTTP method.

http-method = permission

Description

The http-method entry defines the mapping of an HTTP request method to an ACL permission bit.

Options

• T
• c
• g
• m
• d
• b
• s
• v
• a
• B
• t
• R
• r
• x
• l
• N
• W
• A

We can also create custom permissions in custom action groups, for example, [my-action-group]t. See Custom permissions in custom action groups.

Usage: Optional If this stanza is empty, the web reverse proxy defaults to the following ACL bits:

PUT => m 
DELETE => d
All else (GET,POST .. ) => r

The <default> entry defines the permissions required for any methods that are not explicitly specified elsewhere in this stanza. A <default> entry is required in each [http-method-perms] stanza if any methods are defined in the stanza. In other words, an [http-method-perms] stanza can either be empty or contains entries that include the <default> method.

We can define multiple ACL bits for a method. For example, POST = Ax.

If multiple ACL bits are defined for a method, then the user must be granted each of those permissions in the effective ACL for the protected object.

Default value None. By default, this stanza is not defined.

Example:

<default> = r
GET = r
HEAD = T
PUT = m
POST = Ax
DELETE = d
TRACE = [my-action-group]t

Parent topic: [http-method-perms] stanza