mirror of
https://github.com/pi-hole/pi-hole.git
synced 2024-11-15 02:42:58 +00:00
lighttpd conf: collect ^/admin/ conditions
move a sub-condition to be a nested condition under ^/admin/ Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
This commit is contained in:
parent
dafc9983f5
commit
62bf9957dc
2 changed files with 18 additions and 18 deletions
|
@ -95,17 +95,17 @@ $HTTP["url"] =~ "^/admin/" {
|
||||||
"X-Permitted-Cross-Domain-Policies" => "none",
|
"X-Permitted-Cross-Domain-Policies" => "none",
|
||||||
"Referrer-Policy" => "same-origin"
|
"Referrer-Policy" => "same-origin"
|
||||||
)
|
)
|
||||||
}
|
|
||||||
|
|
||||||
# Block . files from being served, such as .git, .github, .gitignore
|
# Block . files from being served, such as .git, .github, .gitignore
|
||||||
$HTTP["url"] =~ "^/admin/\.(.*)" {
|
$HTTP["url"] =~ "^/admin/\." {
|
||||||
url.access-deny = ("")
|
url.access-deny = ("")
|
||||||
}
|
}
|
||||||
|
|
||||||
# allow teleporter and API qr code iframe on settings page
|
# allow teleporter and API qr code iframe on settings page
|
||||||
$HTTP["url"] =~ "/(teleporter|api_token)\.php$" {
|
$HTTP["url"] =~ "/(teleporter|api_token)\.php$" {
|
||||||
$HTTP["referer"] =~ "/admin/settings\.php" {
|
$HTTP["referer"] =~ "/admin/settings\.php" {
|
||||||
setenv.add-response-header = ( "X-Frame-Options" => "SAMEORIGIN" )
|
setenv.add-response-header = ( "X-Frame-Options" => "SAMEORIGIN" )
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -103,17 +103,17 @@ $HTTP["url"] =~ "^/admin/" {
|
||||||
"X-Permitted-Cross-Domain-Policies" => "none",
|
"X-Permitted-Cross-Domain-Policies" => "none",
|
||||||
"Referrer-Policy" => "same-origin"
|
"Referrer-Policy" => "same-origin"
|
||||||
)
|
)
|
||||||
}
|
|
||||||
|
|
||||||
# Block . files from being served, such as .git, .github, .gitignore
|
# Block . files from being served, such as .git, .github, .gitignore
|
||||||
$HTTP["url"] =~ "^/admin/\.(.*)" {
|
$HTTP["url"] =~ "^/admin/\." {
|
||||||
url.access-deny = ("")
|
url.access-deny = ("")
|
||||||
}
|
}
|
||||||
|
|
||||||
# allow teleporter and API qr code iframe on settings page
|
# allow teleporter and API qr code iframe on settings page
|
||||||
$HTTP["url"] =~ "/(teleporter|api_token)\.php$" {
|
$HTTP["url"] =~ "/(teleporter|api_token)\.php$" {
|
||||||
$HTTP["referer"] =~ "/admin/settings\.php" {
|
$HTTP["referer"] =~ "/admin/settings\.php" {
|
||||||
setenv.add-response-header = ( "X-Frame-Options" => "SAMEORIGIN" )
|
setenv.add-response-header = ( "X-Frame-Options" => "SAMEORIGIN" )
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue