streams/.htaccess

Options -Indexes
AddType application/x-java-archive .jar
AddType audio/ogg .oga
#SSLCipherSuite HIGH:AES256-SHA:AES128-SHA:RC4:!aNULL:!eNULL:!EDH

# don't allow any web access to logfiles, even after rotation/compression
<FilesMatch "\.(out|log|gz)$">
  <IfModule mod_authz_core.c>
    Require all denied
  </IfModule>
  <IfModule !mod_authz_core.c>
    Order deny,allow
    Deny from all
  </IfModule>
</FilesMatch>

<IfModule mod_rewrite.c>
  RewriteEngine on
  # Protect repository directory from browsing
  RewriteRule "(^|/)\.git" - [F]
  RewriteRule "(^|/)store" - [F]

  # Rewrite current-style URLs of the form 'index.php?q=x'.
  # Also place auth information into REMOTE_USER for sites running
  # in CGI mode.

  RewriteCond %{REQUEST_URI} ^/\.well\-known/.*
  RewriteRule ^(.*)$ index.php?q=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]

  RewriteCond %{REQUEST_FILENAME} !-f
  RewriteCond %{REQUEST_FILENAME} !-d
  RewriteRule ^(.*)$ index.php?q=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]
</IfModule>
turn indexes back off (this is from an errant checkin a year or more ago) 2012-03-16 03:07:30 +00:00			`Options -Indexes`
progress on photos 2010-08-06 04:15:24 +00:00			`AddType application/x-java-archive .jar`
provide "return home" key 2011-01-04 13:06:10 +00:00			`AddType audio/ogg .oga`
cherry pick pull request #544 2014-07-25 02:07:04 +00:00			`#SSLCipherSuite HIGH:AES256-SHA:AES128-SHA:RC4:!aNULL:!eNULL:!EDH`
Initial checkin 2010-07-01 23:48:07 +00:00
add gz to access denied files to block rotated logs from public access 2013-07-26 10:50:46 +00:00			`# don't allow any web access to logfiles, even after rotation/compression`
			`<FilesMatch "\.(out\|log\|gz)$">`
Compatible update for .htaccess. This should hopefully work in Apache 2.2 and 2.4. 2015-06-21 21:58:19 +00:00			`<IfModule mod_authz_core.c>`
			`Require all denied`
			`</IfModule>`
			`<IfModule !mod_authz_core.c>`
			`Order deny,allow`
			`Deny from all`
			`</IfModule>`
more instrumentation 2010-10-07 01:14:11 +00:00			`</FilesMatch>`

Initial checkin 2010-07-01 23:48:07 +00:00			`<IfModule mod_rewrite.c>`
			`RewriteEngine on`
revisit friend suggestion structures 2011-06-27 00:57:23 +00:00			`# Protect repository directory from browsing`
that didn't work - we need to be able to see .well-known/host-meta 2010-11-10 01:06:54 +00:00			`RewriteRule "(^\|/)\.git" - [F]`
move some store things 2014-01-21 08:19:53 +00:00			`RewriteRule "(^\|/)store" - [F]`
improved lockout of version control directories from browsing 2010-11-09 22:10:33 +00:00
Initial checkin 2010-07-01 23:48:07 +00:00			`# Rewrite current-style URLs of the form 'index.php?q=x'.`
revisit friend suggestion structures 2011-06-27 00:57:23 +00:00			`# Also place auth information into REMOTE_USER for sites running`
			`# in CGI mode.`

try that patch again 2016-02-08 22:19:49 +00:00			`RewriteCond %{REQUEST_URI} ^/\.well\-known/.*`
			`RewriteRule ^(.*)$ index.php?q=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]`

Initial checkin 2010-07-01 23:48:07 +00:00			`RewriteCond %{REQUEST_FILENAME} !-f`
			`RewriteCond %{REQUEST_FILENAME} !-d`
api post sort of working - output status,user need to be swapped 2011-06-20 03:13:24 +00:00			`RewriteRule ^(.*)$ index.php?q=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]`
Initial checkin 2010-07-01 23:48:07 +00:00			`</IfModule>`
Safe defaults to prevent #188 2015-11-27 22:38:29 +00:00