.htaccess

   1 # Disable directory listing
   2 Options -Indexes
   3
   4 RewriteEngine On
   5
   6 # Prevent accessing subdirectories not managed by SCM
   7 RewriteRule ^(.git|doxygen|vendor) - [F]
   8
   9 RewriteCond %{REQUEST_URI}::$1 ^(/.+)/(.*)::\2$
  10 RewriteRule ^(.*) - [E=BASE:%1]
  11
  12 RewriteCond %{ENV:REDIRECT_BASE} (.+)
  13 RewriteRule .* - [E=BASE:%1]
  14
  15 # Forward the "Authorization" HTTP header
  16 RewriteCond %{HTTP:Authorization} ^(.*)
  17 RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]
  18
  19 RewriteCond %{REQUEST_FILENAME} !-f
  20 RewriteCond %{REQUEST_FILENAME} !-d
  21 RewriteRule ^((?!api/)[^/]*)/?(.*)$ $2?%{QUERY_STRING} [E=USERSPACE:$1]
  22
  23 RewriteCond %{ENV:REDIRECT_USERSPACE} (.+)
  24 RewriteRule .* - [E=USERSPACE:%1]
  25
  26 # REST API
  27 RewriteCond %{REQUEST_FILENAME} !-f
  28 RewriteCond %{REQUEST_FILENAME} !-d
  29 RewriteRule ^ index.php [QSA,L]
  30
  31 <Limit GET POST PUT DELETE OPTIONS>
  32   <IfModule version_module>
  33     <IfVersion >= 2.4>
  34        Require all granted
  35     </IfVersion>
  36     <IfVersion < 2.4>
  37        Allow from all
  38        Deny from none
  39     </IfVersion>
  40   </IfModule>
  41
  42   <IfModule !version_module>
  43     Require all granted
  44   </IfModule>
  45 </Limit>
  46
  47 <LimitExcept GET POST PUT DELETE OPTIONS>
  48   <IfModule version_module>
  49     <IfVersion >= 2.4>
  50        Require all denied
  51     </IfVersion>
  52     <IfVersion < 2.4>
  53        Allow from none
  54        Deny from all
  55     </IfVersion>
  56   </IfModule>
  57
  58   <IfModule !version_module>
  59     Require all denied
  60   </IfModule>
  61 </LimitExcept>