InspIRCd v4 is still early in development!
If you use this branch you may experience crashes, weird behaviour, and unannounced breaking changes.
You probably want to use InspIRCd v3 instead.
The "httpd_acl" Module (v4)
This module allows the server administrator to control who can access resources served over HTTP with the httpd module.
To load this module use the following
<httpdacl> tag defines settings about how the httpd_acl module should behave. This tag can be defined as many times as required.
|path||Text||None||Required! The path to protect with this ACL rule.|
|types||Text||None||Required! A comma-delimited list of types which apply to this ACL rule.|
|blacklist||Text||None||Required for the blacklist type! A comma-delimited list of IP addresses to deny access to this path from.|
|password||Text||None||Required for the password type! The password that HTTP connections must provide with their request.|
|username||Text||None||Required for the password type! The username that HTTP connections must provide with their request.|
|whitelist||Text||None||Required for the blacklist type! A comma-delimited list of IP addresses to allow access to this path from.|
The types field should be set to one or more of the following values:
|blacklist||Deny connections from the specified IP addresses.|
|password||Require connections to provide the specified username and password.|
|whitelist||Allow connections from the specified IP addresses.|
Denies access to the /stats* path from 192.0.2.* and 184.108.40.206.*:
<httpdacl path="/stats*" types="blacklist" blacklist="192.0.2.*,220.127.116.11.*">
Only allows access to the /config* path from 203.0.113.*:
<httpdacl path="/config*" types="whitelist" whitelist="203.0.113.*">
Requires requests to provide the username "inspircd" and password "correct horse battery staple":
<httpdacl path="/*" types="password" username="inspircd" password="correct horse battery staple">