friendica-github/.htaccess-dist

# SPDX-FileCopyrightText: 2010 - 2024 the Friendica project
#
# SPDX-License-Identifier: CC0-1.0

# This file is meant to be copied to ".htaccess" on Apache-powered web servers.
# The created .htaccess file can be edited manually and will not be overwritten by Friendica updates.

Options -Indexes
AddType application/x-java-archive .jar
AddType audio/ogg .oga
#AddHandler php53-cgi .php

# deny access to log files (friendica.log or php.out)
<FilesMatch "\.(out|log)$">
  <IfModule authz_host_module>
    #Apache 2.4
    Require all denied
  </IfModule>
  <IfModule !authz_host_module>
    #Apache 2.2
    Deny from all
  </IfModule>
</FilesMatch>

# deny access to backup files
<FilesMatch "(\~|\.bak|\.swp)$">
  <IfModule authz_host_module>
    #Apache 2.4
    Require all denied
  </IfModule>
  <IfModule !authz_host_module>
    #Apache 2.2
    Deny from all
  </IfModule>
</FilesMatch>

<IfModule mod_rewrite.c>
  RewriteEngine on
  # Protect repository directory from browsing
  RewriteRule "(^|/)\.git" - [F]

  # Rewrite current-style URLs of the form 'index.php?pagename=x'.
  # Also place auth information into REMOTE_USER for sites running
  # in CGI mode.

  # If you have troubles or use VirtualDocumentRoot
  # uncomment this and set it to the path where your friendica installation is
  # i.e.:
  # Friendica url: http://some.example.com
  # RewriteBase /
  # Friendica url: http://some.example.com/friendica
  # RewriteBase /friendica/
  #
  #RewriteBase /

  RewriteCond %{REQUEST_FILENAME} !-f
  RewriteCond %{REQUEST_FILENAME} !-d
  RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA,B]

</IfModule>
added SPDX header information to some files In the end of this progress Friendica will hopefully be [REUSE](https://reuse.software) complient but this is a longterm goal. 2024-08-18 08:13:26 +02:00			`# SPDX-FileCopyrightText: 2010 - 2024 the Friendica project`
			`#`
			`# SPDX-License-Identifier: CC0-1.0`

Prevents Apache from serving CLI scripts 2020-09-07 05:43:20 -04:00			`# This file is meant to be copied to ".htaccess" on Apache-powered web servers.`
			`# The created .htaccess file can be edited manually and will not be overwritten by Friendica updates.`

turn indexes back off (this is from an errant checkin a year or more ago) 2012-03-15 20:07:30 -07:00			`Options -Indexes`
progress on photos 2010-08-05 21:15:24 -07:00			`AddType application/x-java-archive .jar`
provide "return home" key 2011-01-04 05:06:10 -08:00			`AddType audio/ogg .oga`
modified: view/theme/smoothly/style.css modified: view/theme/smoothly/theme.php 2014-01-27 14:36:38 +01:00			`#AddHandler php53-cgi .php`
Initial checkin 2010-07-01 16:48:07 -07:00
.htaccess-dist deny access to some backup files this PR adds a filematch block to the distributed .htaccess file to deny access to backup files from emacs (~), vim (.swp) and other backup files (.bak). addressing #11350 2022-03-16 19:35:59 +01:00			`# deny access to log files (friendica.log or php.out)`
improved lockout of version control directories from browsing 2010-11-09 14:10:33 -08:00			`<FilesMatch "\.(out\|log)$">`
Continued: - renamed .htaccess -> .htaccess-dist and ignored .htaccess to allow local changes - described /nbproject/private/ ignore (NetBeans IDE's private project data) Signed-off-by: Roland Häder <roland@mxchange.org> 2018-05-02 22:26:24 +02:00			`<IfModule authz_host_module>`
recreate fix for #2617 on correct branch 2016-06-18 08:16:09 -04:00			`#Apache 2.4`
			`Require all denied`
			`</IfModule>`
			`<IfModule !authz_host_module>`
			`#Apache 2.2`
			`Deny from all`
			`</IfModule>`
more instrumentation 2010-10-06 18:14:11 -07:00			`</FilesMatch>`

.htaccess-dist deny access to some backup files this PR adds a filematch block to the distributed .htaccess file to deny access to backup files from emacs (~), vim (.swp) and other backup files (.bak). addressing #11350 2022-03-16 19:35:59 +01:00			`# deny access to backup files`
only deny files ending in ~ 2022-03-16 19:54:43 +01:00			`<FilesMatch "(\~\|\.bak\|\.swp)$">`
.htaccess-dist deny access to some backup files this PR adds a filematch block to the distributed .htaccess file to deny access to backup files from emacs (~), vim (.swp) and other backup files (.bak). addressing #11350 2022-03-16 19:35:59 +01:00			`<IfModule authz_host_module>`
			`#Apache 2.4`
			`Require all denied`
			`</IfModule>`
			`<IfModule !authz_host_module>`
			`#Apache 2.2`
			`Deny from all`
			`</IfModule>`
			`</FilesMatch>`

Initial checkin 2010-07-01 16:48:07 -07:00			`<IfModule mod_rewrite.c>`
			`RewriteEngine on`
revisit friend suggestion structures 2011-06-26 17:57:23 -07:00			`# Protect repository directory from browsing`
that didn't work - we need to be able to see .well-known/host-meta 2010-11-09 17:06:54 -08:00			`RewriteRule "(^\|/)\.git" - [F]`
improved lockout of version control directories from browsing 2010-11-09 14:10:33 -08:00
API: The command "users/search" is now supported. 2014-09-07 07:32:09 +02:00			`# Rewrite current-style URLs of the form 'index.php?pagename=x'.`
revisit friend suggestion structures 2011-06-26 17:57:23 -07:00			`# Also place auth information into REMOTE_USER for sites running`
			`# in CGI mode.`

Added comments in .htacces to help configuring installation behind a VirtualDocumantRoot 2012-09-02 23:00:58 +02:00			`# If you have troubles or use VirtualDocumentRoot`
			`# uncomment this and set it to the path where your friendica installation is`
			`# i.e.:`
			`# Friendica url: http://some.example.com`
			`# RewriteBase /`
			`# Friendica url: http://some.example.com/friendica`
small twitter improvements 2012-09-06 17:31:05 -06:00			`# RewriteBase /friendica/`
Added comments in .htacces to help configuring installation behind a VirtualDocumantRoot 2012-09-02 23:00:58 +02:00			`#`
			`#RewriteBase /`

Initial checkin 2010-07-01 16:48:07 -07:00			`RewriteCond %{REQUEST_FILENAME} !-f`
			`RewriteCond %{REQUEST_FILENAME} !-d`
API: Support new tag endpoints 2022-11-27 19:22:41 +00:00			`RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA,B]`
Initial checkin 2010-07-01 16:48:07 -07:00
			`</IfModule>`