shihaam/akaunting
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added new exceptions

Browse Source
This commit is contained in:
denisdulici 2020-02-20 09:42:03 +03:00
parent 0dd7233095
commit 99d0effc3f
2 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.htaccess
View File

@ -12,13 +12,13 @@
RewriteEngine On RewriteEngine On
# Prevent Direct Access to Protected Files # Prevent Direct Access to Protected Files
<FilesMatch "(?i)(^artisan$|\.env|\.log)"> <FilesMatch "(?i)(^artisan$|\.env|\.json|\.log)">
Order deny,allow Order deny,allow
Deny from all Deny from all
</FilesMatch> </FilesMatch>
# Prevent Direct Access To Protected Folders # Prevent Direct Access To Protected Folders
RewriteRule ^(app|bootstrap|config|database|resources|routes|storage|tests)/(.*) / [L,R=301] RewriteRule ^(app|bootstrap|config|database|overrides|resources|routes|storage|tests)/(.*) / [L,R=301]
# Prevent Direct Access To modules/vendor Folders Except Assets # Prevent Direct Access To modules/vendor Folders Except Assets
RewriteRule ^(modules|vendor)/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ / [L,R=301] RewriteRule ^(modules|vendor)/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ / [L,R=301]

4
nginx.example.com.conf
View File

@ -22,12 +22,12 @@ server {
} }
# Prevent Direct Access To Protected Files # Prevent Direct Access To Protected Files
location ~ \.(env|log) { location ~ \.(env|json|log) {
deny all; deny all;
} }
# Prevent Direct Access To Protected Folders # Prevent Direct Access To Protected Folders
location ~ ^/(^app$|bootstrap|config|database|resources|routes|storage|tests|artisan) { location ~ ^/(^app$|bootstrap|config|database|overrides|resources|routes|storage|tests|artisan) {
deny all; deny all;
} }