shihaam/akaunting
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added new exceptions

Browse Source
This commit is contained in:
denisdulici 2020-02-20 09:42:03 +03:00
parent 0dd7233095
commit 99d0effc3f
2 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.htaccess
View File

@ -12,13 +12,13 @@
RewriteEngine On RewriteEngine On
# Prevent Direct Access to Protected Files # Prevent Direct Access to Protected Files
<FilesMatch "(?i)(^artisan$|\.env|\.log)"> <FilesMatch "(?i)(^artisan$|\.env|\.json|\.log)">
Order deny,allow Order deny,allow
Deny from all Deny from all
</FilesMatch> </FilesMatch>
# Prevent Direct Access To Protected Folders # Prevent Direct Access To Protected Folders
RewriteRule ^(app|bootstrap|config|database|resources|routes|storage|tests)/(.*) / [L,R=301] RewriteRule ^(app|bootstrap|config|database|overrides|resources|routes|storage|tests)/(.*) / [L,R=301]
# Prevent Direct Access To modules/vendor Folders Except Assets # Prevent Direct Access To modules/vendor Folders Except Assets
RewriteRule ^(modules|vendor)/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ / [L,R=301] RewriteRule ^(modules|vendor)/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ / [L,R=301]

16
nginx.example.com.conf
View File

@ -1,14 +1,14 @@
server { server {
listen 80 default_server; listen 80 default_server;
listen 443 ssl http2; listen 443 ssl http2;
ssl_certificate /ssl/crt/file.crt; ssl_certificate /ssl/crt/file.crt;
ssl_certificate_key /ssl/key/file.key; ssl_certificate_key /ssl/key/file.key;
server_name example.com; server_name example.com;
root /var/www/example.com/public_html; root /var/www/example.com/public_html;
add_header X-Frame-Options "SAMEORIGIN"; add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block"; add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options "nosniff"; add_header X-Content-Type-Options "nosniff";
@ -22,20 +22,20 @@ server {
} }
# Prevent Direct Access To Protected Files # Prevent Direct Access To Protected Files
location ~ \.(env|log) { location ~ \.(env|json|log) {
deny all; deny all;
} }
# Prevent Direct Access To Protected Folders # Prevent Direct Access To Protected Folders
location ~ ^/(^app$|bootstrap|config|database|resources|routes|storage|tests|artisan) { location ~ ^/(^app$|bootstrap|config|database|overrides|resources|routes|storage|tests|artisan) {
deny all; deny all;
} }
# Prevent Direct Access To modules/vendor Folders Except Assets # Prevent Direct Access To modules/vendor Folders Except Assets
location ~ ^/(modules|vendor)\/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ { location ~ ^/(modules|vendor)\/(.*)\.((?!ico|gif|jpg|jpeg|png|js|css|less|sass|font|woff|woff2|eot|ttf|svg).)*$ {
deny all; deny all;
} }
error_page 404 /index.php; error_page 404 /index.php;
# Pass PHP Scripts To FastCGI Server # Pass PHP Scripts To FastCGI Server
@ -50,4 +50,4 @@ server {
location ~ /\.(?!well-known).* { location ~ /\.(?!well-known).* {
deny all; deny all;
} }
} }