winter/.htaccess

<IfModule mod_rewrite.c>

    <IfModule mod_negotiation.c>
        Options -MultiViews
    </IfModule>

    RewriteEngine On

    ##
    ## You may need to uncomment the following line for some hosting environments,
    ## if you have installed to a subdirectory, enter the name here also.
    ##
    # RewriteBase /

    ##
    ## Uncomment following lines to force HTTPS.
    ##
    # RewriteCond %{HTTPS} off
    # RewriteRule (.*) https://%{SERVER_NAME}/$1 [L,R=301]

    ##
    ## Black listed folders
    ##
    RewriteRule ^bootstrap/.* index.php [L,NC]
    RewriteRule ^config/.* index.php [L,NC]
    RewriteRule ^vendor/.* index.php [L,NC]
    RewriteRule ^storage/cms/.* index.php [L,NC]
    RewriteRule ^storage/logs/.* index.php [L,NC]
    RewriteRule ^storage/framework/.* index.php [L,NC]
    RewriteRule ^storage/temp/protected/.* index.php [L,NC]
    RewriteRule ^storage/app/uploads/protected/.* index.php [L,NC]

    ##
    ## White listed folders
    ##
    RewriteCond %{REQUEST_FILENAME} -f
    RewriteCond %{REQUEST_FILENAME} !/.well-known/*
    RewriteCond %{REQUEST_FILENAME} !/storage/app/uploads/.*
    RewriteCond %{REQUEST_FILENAME} !/storage/app/resized/.*
    RewriteCond %{REQUEST_FILENAME} !/storage/app/media/.*
    RewriteCond %{REQUEST_FILENAME} !/storage/temp/public/.*
    RewriteCond %{REQUEST_FILENAME} !/themes/.*/(assets|resources)/.*
    RewriteCond %{REQUEST_FILENAME} !/plugins/.*/(assets|resources)/.*
    RewriteCond %{REQUEST_FILENAME} !/modules/.*/(assets|resources)/.*
    RewriteRule !^index.php index.php [L,NC]

    ##
    ## Block all PHP files, except index
    ##
    RewriteCond %{REQUEST_FILENAME} -f
    RewriteCond %{REQUEST_FILENAME} \.php$
    RewriteRule !^index.php index.php [L,NC]

    ##
    ## Standard routes
    ##
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^ index.php [L]

</IfModule>
Base files 2014-05-14 23:21:55 +10:00			`<IfModule mod_rewrite.c>`
Add .bmp to allowed file types 2015-06-10 22:11:29 +10:00
Base files 2014-05-14 23:21:55 +10:00			`<IfModule mod_negotiation.c>`
			`Options -MultiViews`
			`</IfModule>`

			`RewriteEngine On`
Add helpful RewriteBase comment to .htaccess 2014-05-16 10:01:50 +10:00
			`##`
			`## You may need to uncomment the following line for some hosting environments,`
			`## if you have installed to a subdirectory, enter the name here also.`
			`##`
			`# RewriteBase /`
Allow the resized directory through .htaccess 2020-08-21 20:46:12 -06:00
Added optional htaccess rule to force https (#3345) Credit to @BenjaVR 2018-01-10 00:53:17 +01:00			`##`
			`## Uncomment following lines to force HTTPS.`
			`##`
			`# RewriteCond %{HTTPS} off`
Change default https redirect from 302 to 301 (#5008) Changing default redirect from http to https to 301 (permamently moved) from 302 (temporary moved). Reason: every website in nowadays must be working through https protocol, and 302 status is wrong for this type of redirect. 2020-03-27 21:14:51 +03:00			`# RewriteRule (.*) https://%{SERVER_NAME}/$1 [L,R=301]`
Base files 2014-05-14 23:21:55 +10:00
			`##`
htaccess now resembles october:mirror command Added 'resources' as a potential asset storage directory name 2016-06-17 07:09:14 +10:00			`## Black listed folders`
Base files 2014-05-14 23:21:55 +10:00			`##`
Improve htaccess security 2015-02-20 22:11:42 +11:00			`RewriteRule ^bootstrap/.* index.php [L,NC]`
			`RewriteRule ^config/.* index.php [L,NC]`
			`RewriteRule ^vendor/.* index.php [L,NC]`
			`RewriteRule ^storage/cms/.* index.php [L,NC]`
			`RewriteRule ^storage/logs/.* index.php [L,NC]`
			`RewriteRule ^storage/framework/.* index.php [L,NC]`
Clean up htaccess 2015-04-25 11:22:34 +10:00			`RewriteRule ^storage/temp/protected/.* index.php [L,NC]`
			`RewriteRule ^storage/app/uploads/protected/.* index.php [L,NC]`
Base files 2014-05-14 23:21:55 +10:00
			`##`
htaccess now resembles october:mirror command Added 'resources' as a potential asset storage directory name 2016-06-17 07:09:14 +10:00			`## White listed folders`
Base files 2014-05-14 23:21:55 +10:00			`##`
			`RewriteCond %{REQUEST_FILENAME} -f`
Allow .well-known directory thru the gates In accordance with RFC 5785 https://tools.ietf.org/html/rfc5785 Fixes #2480 2016-11-12 13:29:10 +11:00			`RewriteCond %{REQUEST_FILENAME} !/.well-known/*`
htaccess now resembles october:mirror command Added 'resources' as a potential asset storage directory name 2016-06-17 07:09:14 +10:00			`RewriteCond %{REQUEST_FILENAME} !/storage/app/uploads/.*`
Allow the resized directory through .htaccess 2020-08-21 20:46:12 -06:00			`RewriteCond %{REQUEST_FILENAME} !/storage/app/resized/.*`
htaccess now resembles october:mirror command Added 'resources' as a potential asset storage directory name 2016-06-17 07:09:14 +10:00			`RewriteCond %{REQUEST_FILENAME} !/storage/app/media/.*`
			`RewriteCond %{REQUEST_FILENAME} !/storage/temp/public/.*`
			`RewriteCond %{REQUEST_FILENAME} !/themes/./(assets\|resources)/.`
			`RewriteCond %{REQUEST_FILENAME} !/plugins/./(assets\|resources)/.`
			`RewriteCond %{REQUEST_FILENAME} !/modules/./(assets\|resources)/.`
			`RewriteRule !^index.php index.php [L,NC]`

			`##`
			`## Block all PHP files, except index`
			`##`
			`RewriteCond %{REQUEST_FILENAME} -f`
			`RewriteCond %{REQUEST_FILENAME} \.php$`
			`RewriteRule !^index.php index.php [L,NC]`
Base files 2014-05-14 23:21:55 +10:00
			`##`
			`## Standard routes`
			`##`
			`RewriteCond %{REQUEST_FILENAME} !-f`
			`RewriteRule ^ index.php [L]`

			`</IfModule>`