Prevent direct viewing of .env file if installed in a subdirectory

2024-11-09 23:24:06 -08:00 · 2016-04-19 19:44:09 -07:00 · 2016-04-19 19:44:09 -07:00 · b2e5fa84ea
parent 5c99f9da15
commit b2e5fa84ea
1 changed files with 11 additions and 0 deletions
--- a/.htaccess
+++ b/.htaccess
@ -0,0 +1,11 @@
+<IfModule mod_rewrite.c>
+    <IfModule mod_negotiation.c>
+        Options -MultiViews
+    </IfModule>
+
+    # Make sure .env files not not browseable if in a sub-directory.
+    <FilesMatch "\.env$">
+    Deny from all
+    </FilesMatch>
+    
+</IfModule>