2016-11-12 02:10:12 +01:00
|
|
|
# check if RewriteModule is availbale
|
|
|
|
|
<IfModule mod_rewrite.c>
|
2017-01-26 16:50:30 +01:00
|
|
|
RewriteEngine on
|
2014-02-10 06:36:00 +01:00
|
|
|
|
2017-08-19 13:58:24 +02:00
|
|
|
# uncomment to force https requests
|
|
|
|
|
#RewriteCond %{HTTPS} !=on
|
2017-09-12 01:06:12 +02:00
|
|
|
#RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/.*$ [NC]
|
2017-08-19 13:58:24 +02:00
|
|
|
#RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
|
|
|
|
|
|
|
|
|
|
|
2016-09-20 21:04:57 +02:00
|
|
|
# prevent httpd from serving dotfiles (.htaccess, .svn, .git, etc.) - except let's encrypt challenge
|
|
|
|
|
RedirectMatch 403 ^/?\.(?!/well-known/acme-challenge/[\w-]{43}$)
|
2014-09-19 00:47:39 +02:00
|
|
|
|
2016-11-12 02:10:12 +01:00
|
|
|
RewriteCond %{REQUEST_URI}::$1 ^(/.+)/(.*)::\2$
|
|
|
|
|
RewriteRule ^(.*) - [E=BASE:%1]
|
2014-09-04 20:50:02 +02:00
|
|
|
|
2016-11-12 02:10:12 +01:00
|
|
|
# Sets the HTTP_AUTHORIZATION header removed by apache
|
|
|
|
|
RewriteCond %{HTTP:Authorization} .
|
|
|
|
|
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
|
2014-02-10 06:36:00 +01:00
|
|
|
|
2016-11-12 02:10:12 +01:00
|
|
|
RewriteCond %{REQUEST_FILENAME} -f
|
|
|
|
|
RewriteRule .? - [L]
|
2014-02-10 06:36:00 +01:00
|
|
|
|
2016-11-12 02:10:12 +01:00
|
|
|
RewriteRule .? %{ENV:BASE}/index.php [L]
|
|
|
|
|
|
|
|
|
|
</IfModule>
|
2017-02-06 22:26:13 +01:00
|
|
|
|
|
|
|
|
# Config files from vendor should not be readable via browser
|
|
|
|
|
<FilesMatch "composer.json">
|
|
|
|
|
Order Allow,Deny
|
|
|
|
|
Deny from All
|
|
|
|
|
</FilesMatch>
|
|
|
|
|
|
|
|
|
|
<FilesMatch "composer.lock">
|
|
|
|
|
Order Allow,Deny
|
|
|
|
|
Deny from All
|
|
|
|
|
</FilesMatch>
|
