How To Restrict Access To Particular Folders And Its Subfolders For SSL Requests in Oracle iPlanet Web Server (Doc ID 1315044.1)

Last updated on NOVEMBER 05, 2016

Applies to:

Oracle iPlanet Web Server - Version 6.1 to 6.1 [Release 6.1]
Information in this document applies to any platform.
***Checked for relevance on 24-Jan-2014***

Goal

Consider the following scenario:

Oracle iPlanet Web Server 6.1SPx is installed under:

/export/ws61


The web server has been configured to listen on both SSL (443) and non-SSL ports (80) and also configured for basic authentication.

The document root is

/export/ws61/docs


There are some files under the directory:

/export/ws61/docs/allow-docs


There are some more files under:

/export/ws61/docs/allow-docs/allow-sub-dir


The requirements are:

1) Deny access to all the files directly under /export/ws61/docs/allow-docs if the incoming request is non-ssl (HTTP requests). However, the web server should allow access to those files without any prompt if the incoming request is HTTPS.

2) Deny access to all the files under /export/ws61/docs/allow-docs/allow-sub-dir if the incoming request is non-ssl (HTTP requests) and redirect the requests to HTTPS (SSL port). The web server should allow access to those files with a prompt to enter the credentials if the incoming request is HTTPS.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms