snipe-it/public/.htaccess

39 lines
1.1 KiB
ApacheConf
Raw Normal View History

2016-03-25 01:18:05 -07:00
<IfModule mod_rewrite.c>
<IfModule mod_negotiation.c>
Options -MultiViews
</IfModule>
RewriteEngine On
# Needed for https://letsencrypt.org/ certificates.
RewriteRule ^\.well-known/acme-challenge/ - [L]
2017-09-28 19:45:15 -07:00
# Uncomment these two lines to force SSL redirect in Apache
2016-03-25 01:18:05 -07:00
# RewriteCond %{HTTPS} off
# RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
2017-09-28 19:45:15 -07:00
2016-03-25 01:18:05 -07:00
# Redirect Trailing Slashes If Not A Folder...
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} (.+)/$
RewriteRule ^ %1 [L,R=301]
2016-03-25 01:18:05 -07:00
# Handle Front Controller...
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^ index.php [L]
# Handle Authorization Header
RewriteCond %{HTTP:Authorization} .
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
2017-09-28 19:45:15 -07:00
# Security Headers
# Header set Strict-Transport-Security "max-age=2592000" env=HTTPS
# Header set X-XSS-Protection "1; mode=block"
# Header set X-Content-Type-Options nosniff
# Header set X-Permitted-Cross-Domain-Policies "master-only"
2017-09-28 19:45:15 -07:00
2016-03-25 01:18:05 -07:00
</IfModule>
Options -Indexes