priscillamc/ithemes-banned-users-apache-fix.md

## ithemes-banned-users-apache-fix.md

      
    Raw
  

              ithemes-banned-users-apache-fix.md
            
          
    iThemes Security Banned Users Apache Fix

Enables custom IP and Basic Auth restrictions with iThemes Banned Users module enabled.
The 'Require all granted' directive gives access to any host not banned in the list, ignoring any other restrictions in the .htaccess file. This results in basic authentication and other rules not working.

  
## ithemes-banned-users-apache-fix.php
/**
 * Enables custom IP and Basic Auth restrictions with iThemes Banned Users module enabled
 */
function pm_fix_ithemes_apache_config( $modification ){
	$modification = str_replace( "\t\t\tRequire all granted\n", '', $modification );
	return $modification;
}
add_filter('itsec_filter_apache_server_config_modification', 'pm_fix_ithemes_apache_config', 11);
	/**
	* Enables custom IP and Basic Auth restrictions with iThemes Banned Users module enabled
	*/
	function pm_fix_ithemes_apache_config( $modification ){
	$modification = str_replace( "\t\t\tRequire all granted\n", '', $modification );
	return $modification;
	}
	add_filter('itsec_filter_apache_server_config_modification', 'pm_fix_ithemes_apache_config', 11);