X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;ds=sidebyside;f=.htaccess;h=4c00427195ecb0998589fc09dd02fa8580d97a3e;hb=4fa9a3c5d83a1024678596a586afe5df14a345b5;hp=66ef8f69ce39e127dc266c9ab3727c4b8be4f9fa;hpb=80677a23e2e10d78bc527e9754286787b453ce61;p=github%2Fshaarli%2FShaarli.git
diff --git a/.htaccess b/.htaccess
index 66ef8f69..4c004271 100644
--- a/.htaccess
+++ b/.htaccess
@@ -1,4 +1,48 @@
+# Disable directory listing
+Options -Indexes
+
RewriteEngine On
+
+# Prevent accessing subdirectories not managed by SCM
+RewriteRule ^(.git|doxygen|vendor) - [F]
+
+# Forward the "Authorization" HTTP header
+RewriteCond %{HTTP:Authorization} ^(.*)
+RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]
+
+# REST API
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]
+
+
+
+ = 2.4>
+ Require all granted
+
+
+ Allow from all
+ Deny from none
+
+
+
+
+ Require all granted
+
+
+
+
+
+ = 2.4>
+ Require all denied
+
+
+ Allow from none
+ Deny from all
+
+
+
+
+ Require all denied
+
+