Apache > HTTP Server > Documentation > Version 2.5 > Modules

Apache Module mod_allowhandlers

Available Languages:  en  |  es  |  fr 

Description:Easily restrict what HTTP handlers can be used on the server
Module Identifier:allowhandlers_module
Source File:mod_allowhandlers.c


This module makes it easy to restrict which handlers may be used for a request. A possible configuration would be:

<Location "/">
  AllowHandlers not server-info server-status balancer-manager ldap-status

It also registers a handler named forbidden that simply returns 403 FORBIDDEN to the client. This can be used with directives like AddHandler.


Bugfix checklist

See also


AllowHandlers Directive

Description:Restrict access to the listed handlers
Syntax:AllowHandlers [not] none|handler-name [none|handler-name]...
Default:AllowHandlers all

The handler names are case sensitive. The special name none can be used to match the case where no handler has been set. The special value all can be used to allow all handlers again in a later config section, even if some headers were denied earlier in the configuration merge order:

<Location "/server-status">
  AllowHandlers all
  SetHandler server-status

Available Languages:  en  |  es  |  fr 



This is not a Q&A section. Comments placed here should be pointed towards suggestions on improving the documentation or server, and may be removed by our moderators if they are either implemented or considered invalid/off-topic. Questions on how to manage the Apache HTTP Server should be directed at either our IRC channel, #httpd, on Libera.chat, or sent to our mailing lists.