[github/shaarli/Shaarli.git] / .htaccess

# Disable directory listing
Options -Indexes

RewriteEngine On

# Prevent accessing subdirectories not managed by SCM
RewriteRule ^(.git|doxygen|vendor) - [F]

# Forward the "Authorization" HTTP header
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]

# REST API
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]

<LimitExcept GET POST PUT DELETE PATCH OPTIONS>
  <IfModule version_module>
    <IfVersion >= 2.4>
       Require all denied
    </IfVersion>
    <IfVersion < 2.4>
       Allow from none
       Deny from all
    </IfVersion>
  </IfModule>

  <IfModule !version_module>
    Require all denied
  </IfModule>
</LimitExcept>
Commit	Line	Data
	1	# Disable directory listing
	2	Options -Indexes
	3
	4	RewriteEngine On
	5
	6	# Prevent accessing subdirectories not managed by SCM
	7	RewriteRule ^(.git\|doxygen\|vendor) - [F]
	8
	9	# Forward the "Authorization" HTTP header
	10	RewriteCond %{HTTP:Authorization} ^(.*)
	11	RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]
	12
	13	# REST API
	14	RewriteCond %{REQUEST_FILENAME} !-f
	15	RewriteCond %{REQUEST_FILENAME} !-d
	16	RewriteRule ^ index.php [QSA,L]
	17
	18	<LimitExcept GET POST PUT DELETE PATCH OPTIONS>
	19	<IfModule version_module>
	20	<IfVersion >= 2.4>
	21	Require all denied
	22	</IfVersion>
	23	<IfVersion < 2.4>
	24	Allow from none
	25	Deny from all
	26	</IfVersion>
	27	</IfModule>
	28
	29	<IfModule !version_module>
	30	Require all denied
	31	</IfModule>
	32	</LimitExcept>