What WEBDAV method is used for app login? I blocked /index.php/login from apache config but users are still able to log in from the app.
What endpoint/method do I need to block to prevent initial login from apps?
I see this in the logs as the first method called, but my understanding is that blocking the below endpoint would block all webdav calls, I only want to block login based on IP.
10.10.10.10 - user [19/May/2017:16:45:52 -0400] "HEAD /remote.php/webdav/ HTTP/1.1" 200 -