[APACHE DOCUMENTATION]

Apache HTTP Server Version 1.3

Module mod_dav

This module provides class 1 and class 2 WebDAV ('Web-based Distributed Authoring and Versioning') functionality for Apache. This extension to the HTTP protocol allows creating, moving, copying, and deleting files and directories on a remote web server.

Directives


To enable mod_dav, add the following to a container in your httpd.conf file:

Dav On

Also, specify a valid filename for the DAV lock database by adding the following to the global section in your httpd.conf file:

DavLockDB /tmp/DavLock    (Any web-server writeable filename, without an extension)


Dav

Syntax: Dav <on | off>
Default: Dav off
Context: directory
Status: extension
Module: mod_dav
Compatibility: Apache 1.3.4 and above

Use the Dav directive to enable the WebDAV HTTP methods for the given container. You may wish to add a <Limit> clause inside the location directive to limit access to DAV-enabled locations.

Example:

DavLockDB /tmp/DavLock

<Location /foo>
Dav On

AuthType Basic
AuthName DAV
AuthUserFile user.passwd

  <LimitExcept GET HEAD OPTIONS>
  require user admin
  </LimitExcept>
</Location>


DavLockDB

Syntax: DavLockDB <Full path to lock database>
Default: None
Context: server config, virtual host
Status: extension
Module: mod_dav
Compatibility: Apache 1.3.4 and above

Use the DavLockDB directive to specify the full path to the lock database, excluding an extension. The default (file system) implementation of mod_dav uses a SDBM database to track user locks. The utility modules/dav/util/lockview can be used from the server to display all locks in a lock database.

Example:

DavLockDB /tmp/DavLock



DavMinTimeout

Syntax: DavMinTimeout <seconds>
Default: DavMinTimeout 0
Context: directory
Status: extension
Module: mod_dav
Compatibility: Apache 1.3.4 and above

When a client requests a DAV resource lock, it can also specify a time when the lock will be automatically removed by the server. This value is only a request, and the server can ignore it or inform the client of an arbitrary value.

Use the DavMinTimeout directive to specify, in seconds, the minimum lock timeout to return to a client. Microsoft Web Folders defaults to a timeout of 120 seconds; the DavMinTimeout can override this to a higher value (like 600 seconds) to reduce the chance of the client losing the lock due to network latency.

Example:

<Location /MSWord>
DavMinTimeout 600
</Location>



DavDepthInfinity

Syntax: DavDepthInfinity <on | off>
Default: DavDepthInfinity off
Context: directory
Status: extension
Module: mod_dav
Compatibility: Apache 1.3.4 and above

Use the DavDepthInfinity directive to allow the processing of PROPFIND requests containing the header 'Depth: Infinity'. Because this type of request could constitute a denial-of-service attack, by default it is not allowed.


LimitXMLRequestBody

Syntax: LimitXMLRequestBody <size in bytes>
Default: LimitXMLRequestBody 1000000
Context: directory
Status: extension
Module: mod_dav
Compatibility: Apache 1.3.4 and above

Use the LimitXMLRequestBody directive to limit the size of an XML request which mod_dav will attempt to parse. Specify a size greater than zero.


Apache HTTP Server Version 1.3