From 7e28802eb90fc18a6d74c2712f00ba35b1235423 Mon Sep 17 00:00:00 2001
From: "Michael J. Rubinsky" <mrubinsk@horde.org>
Date: Sun, 12 Sep 2010 14:31:10 -0400
Subject: [PATCH] Tweak url.access-deny

still disallow /config/ access, but make exception for /admin/config/

Thanks to eisd in #regex for helping with the syntax here.
---
 horde/docs/lighttpd-horde.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/horde/docs/lighttpd-horde.conf b/horde/docs/lighttpd-horde.conf
index bc999df8e..386716baa 100644
--- a/horde/docs/lighttpd-horde.conf
+++ b/horde/docs/lighttpd-horde.conf
@@ -18,6 +18,6 @@ url.rewrite-once += (
         "^/horde/incubator/content/(.*)$" => "/horde/incubator/content/index.php"
 )
 
-$HTTP["url"] =~ "(/templates/|/scripts/|/lib/|/po/|/locale/)" {
+$HTTP["url"] =~ "(/templates/|/scripts/|/lib/|/po/|/locale/|(?<!admin)\/config\/?)" {
     url.access-deny = ("")
 }
-- 
2.11.0