X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=.htaccess;h=af2dc5a7ff24a244d731a5d2382dc496f62d1eda;hb=e011be01701e7f0f2bee9a5de3f062a5ca1b17df;hp=b238854c7929d911bb7dc1b5093e29dfbee7cd46;hpb=9cc6ea6560660f6616dcd28d71d19625cf372a71;p=github%2Fshaarli%2FShaarli.git
diff --git a/.htaccess b/.htaccess
index b238854c..af2dc5a7 100644
--- a/.htaccess
+++ b/.htaccess
@@ -7,6 +7,7 @@ RewriteEngine On
RewriteRule ^(.git|doxygen|vendor) - [F]
# Forward the "Authorization" HTTP header
+# fixes JWT token not correctly forwarded on some Apache/FastCGI setups
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]
@@ -15,9 +16,18 @@ RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]
-
- Require all granted
-
-
+
+
+ = 2.4>
+ Require all denied
+
+
+ Allow from none
+ Deny from all
+
+
+
+
Require all denied
+