Configuration - access

The first matching record, (all fields match or are "*", which matches anything), is used and grants the access specified.

Any of the fields may be "*" except the "access" field. Any fields which are not set to "*", must match the correcponding data. E.G. if the "program" is set to "xyzzy", then the record only applies to the "xyzzy" program and if all the other fields match, then the user is granted the access specified.

The fields are: access program user group ip/host.

• "access" is either "allow" or "deny", with obvious meaning.
• "program" is the name of the program (whatever is set in $main::prog).
• "user" is from the CGI variable REMOTE_USER
• "group" is a group that the "user" belongs to, as implemented in the htpasswd program supplied by the apache web-server.
• "ip/host" is either a domain-name, a domain-name suffix (indicated by a leading "."), an IP-number, or an IP-number prefix (indicated by a trailing "."). A domain-name suffix matches if the name that REMOTE_ADDR resolves to ends with the suffix. Similarly, an IP-number prefix matches if REMOTE_ADDR begins with the prefix.