|
1 | | -############################################ |
2 | | -## overrides deployment configuration mode value |
3 | | -## use command bin/magento deploy:mode:set to switch modes |
4 | | - |
5 | | -# SetEnv MAGE_MODE developer |
6 | | - |
7 | | -############################################ |
8 | | -## uncomment these lines for CGI mode |
9 | | -## make sure to specify the correct cgi php binary file name |
10 | | -## it might be /cgi-bin/php-cgi |
11 | | - |
12 | | -# Action php5-cgi /cgi-bin/php5-cgi |
13 | | -# AddHandler php5-cgi .php |
14 | | - |
15 | | -############################################ |
16 | | -## GoDaddy specific options |
17 | | - |
18 | | -# Options -MultiViews |
19 | | - |
20 | | -## you might also need to add this line to php.ini |
21 | | -## cgi.fix_pathinfo = 1 |
22 | | -## if it still doesn't work, rename php.ini to php5.ini |
23 | | - |
24 | | -############################################ |
25 | | -## this line is specific for 1and1 hosting |
26 | | - |
27 | | - #AddType x-mapp-php5 .php |
28 | | - #AddHandler x-mapp-php5 .php |
29 | | - |
30 | | -############################################ |
31 | | -## default index file |
32 | | - |
33 | | - DirectoryIndex index.php |
34 | | - |
| 1 | +# All explanations you could find in .htaccess.sample file |
| 2 | +DirectoryIndex index.php |
35 | 3 | <IfModule mod_php5.c> |
36 | | -############################################ |
37 | | -## adjust memory limit |
38 | | - |
39 | 4 | php_value memory_limit 768M |
40 | 5 | php_value max_execution_time 18000 |
41 | | - |
42 | | -############################################ |
43 | | -## disable automatic session start |
44 | | -## before autoload was initialized |
45 | | - |
46 | 6 | php_flag session.auto_start off |
47 | | - |
48 | | -############################################ |
49 | | -## enable resulting html compression |
50 | | - |
51 | | - #php_flag zlib.output_compression on |
52 | | - |
53 | | -########################################### |
54 | | -## disable user agent verification to not break multiple image upload |
55 | | - |
56 | 7 | php_flag suhosin.session.cryptua off |
57 | 8 | </IfModule> |
58 | 9 | <IfModule mod_php7.c> |
59 | | -############################################ |
60 | | -## adjust memory limit |
61 | | - |
62 | 10 | php_value memory_limit 768M |
63 | 11 | php_value max_execution_time 18000 |
64 | | - |
65 | | -############################################ |
66 | | -## disable automatic session start |
67 | | -## before autoload was initialized |
68 | | - |
69 | 12 | php_flag session.auto_start off |
70 | | - |
71 | | -############################################ |
72 | | -## enable resulting html compression |
73 | | - |
74 | | - #php_flag zlib.output_compression on |
75 | | - |
76 | | -########################################### |
77 | | -## disable user agent verification to not break multiple image upload |
78 | | - |
79 | 13 | php_flag suhosin.session.cryptua off |
80 | 14 | </IfModule> |
81 | 15 | <IfModule mod_security.c> |
82 | | -########################################### |
83 | | -## disable POST processing to not break multiple image upload |
84 | | - |
85 | 16 | SecFilterEngine Off |
86 | 17 | SecFilterScanPOST Off |
87 | 18 | </IfModule> |
88 | | - |
89 | | -<IfModule mod_deflate.c> |
90 | | - |
91 | | -############################################ |
92 | | -## enable apache served files compression |
93 | | -## http://developer.yahoo.com/performance/rules.html#gzip |
94 | | - |
95 | | - # Insert filter on all content |
96 | | - ###SetOutputFilter DEFLATE |
97 | | - # Insert filter on selected content types only |
98 | | - #AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript |
99 | | - |
100 | | - # Netscape 4.x has some problems... |
101 | | - #BrowserMatch ^Mozilla/4 gzip-only-text/html |
102 | | - |
103 | | - # Netscape 4.06-4.08 have some more problems |
104 | | - #BrowserMatch ^Mozilla/4\.0[678] no-gzip |
105 | | - |
106 | | - # MSIE masquerades as Netscape, but it is fine |
107 | | - #BrowserMatch \bMSIE !no-gzip !gzip-only-text/html |
108 | | - |
109 | | - # Don't compress images |
110 | | - #SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary |
111 | | - |
112 | | - # Make sure proxies don't deliver the wrong content |
113 | | - #Header append Vary User-Agent env=!dont-vary |
114 | | - |
115 | | -</IfModule> |
116 | | - |
117 | 19 | <IfModule mod_ssl.c> |
118 | | - |
119 | | -############################################ |
120 | | -## make HTTPS env vars available for CGI mode |
121 | | - |
122 | 20 | SSLOptions StdEnvVars |
123 | | - |
124 | 21 | </IfModule> |
125 | | - |
126 | | -############################################ |
127 | | -## workaround for Apache 2.4.6 CentOS build when working via ProxyPassMatch with HHVM (or any other) |
128 | | -## Please, set it on virtual host configuration level |
129 | | - |
130 | | -## SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1 |
131 | | -############################################ |
132 | | - |
133 | 22 | <IfModule mod_rewrite.c> |
134 | | - |
135 | | -############################################ |
136 | | -## enable rewrites |
137 | | - |
138 | 23 | Options +FollowSymLinks |
139 | 24 | RewriteEngine on |
140 | | - |
141 | | -############################################ |
142 | | -## you can put here your magento root folder |
143 | | -## path relative to web root |
144 | | - |
145 | | - #RewriteBase /magento/ |
146 | | - |
147 | | -############################################ |
148 | | -## workaround for HTTP authorization |
149 | | -## in CGI environment |
150 | | - |
151 | 25 | RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] |
152 | | - |
153 | | -############################################ |
154 | | -## TRACE and TRACK HTTP methods disabled to prevent XSS attacks |
155 | | - |
156 | 26 | RewriteCond %{REQUEST_METHOD} ^TRAC[EK] |
157 | 27 | RewriteRule .* - [L,R=405] |
158 | | - |
159 | | -############################################ |
160 | | -## redirect for mobile user agents |
161 | | - |
162 | | - #RewriteCond %{REQUEST_URI} !^/mobiledirectoryhere/.*$ |
163 | | - #RewriteCond %{HTTP_USER_AGENT} "android|blackberry|ipad|iphone|ipod|iemobile|opera mobile|palmos|webos|googlebot-mobile" [NC] |
164 | | - #RewriteRule ^(.*)$ /mobiledirectoryhere/ [L,R=302] |
165 | | - |
166 | | -############################################ |
167 | | -## never rewrite for existing files, directories and links |
168 | | - |
169 | 28 | RewriteCond %{REQUEST_FILENAME} !-f |
170 | 29 | RewriteCond %{REQUEST_FILENAME} !-d |
171 | 30 | RewriteCond %{REQUEST_FILENAME} !-l |
172 | | - |
173 | | -############################################ |
174 | | -## rewrite everything else to index.php |
175 | | - |
176 | 31 | RewriteRule .* index.php [L] |
177 | | - |
178 | 32 | </IfModule> |
179 | | - |
180 | | - |
181 | | -############################################ |
182 | | -## Prevent character encoding issues from server overrides |
183 | | -## If you still have problems, use the second line instead |
184 | | - |
185 | 33 | AddDefaultCharset Off |
186 | | - #AddDefaultCharset UTF-8 |
187 | | - |
| 34 | + AddType 'text/html; charset=UTF-8' html |
188 | 35 | <IfModule mod_expires.c> |
189 | | - |
190 | | -############################################ |
191 | | -## Add default Expires header |
192 | | -## http://developer.yahoo.com/performance/rules.html#expires |
193 | | - |
194 | 36 | ExpiresDefault "access plus 1 year" |
195 | 37 | ExpiresByType text/html A0 |
196 | 38 | ExpiresByType text/plain A0 |
197 | | - |
198 | 39 | </IfModule> |
199 | | - |
200 | | -########################################### |
201 | | -## Deny access to root files to hide sensitive application information |
202 | | - RedirectMatch 404 /\.git |
203 | | - |
| 40 | + RedirectMatch 403 /\.git |
204 | 41 | <Files composer.json> |
205 | 42 | order allow,deny |
206 | 43 | deny from all |
|
237 | 74 | order allow,deny |
238 | 75 | deny from all |
239 | 76 | </Files> |
240 | | - <Files CONTRIBUTOR_LICENSE_AGREEMENT.html> |
241 | | - order allow,deny |
242 | | - deny from all |
243 | | - </Files> |
244 | 77 | <Files COPYING.txt> |
245 | 78 | order allow,deny |
246 | 79 | deny from all |
|
274 | 107 | deny from all |
275 | 108 | </Files> |
276 | 109 | <Files magento_umask> |
277 | | - order allow,deny |
278 | | - deny from all |
| 110 | + order allow,deny |
| 111 | + deny from all |
279 | 112 | </Files> |
280 | | - |
281 | | -################################ |
282 | | -## If running in cluster environment, uncomment this |
283 | | -## http://developer.yahoo.com/performance/rules.html#etags |
284 | | - |
285 | | - #FileETag none |
286 | | - |
287 | | -############################################ |
288 | | -## Add custom headers |
| 113 | +ErrorDocument 404 /pub/errors/404.php |
| 114 | +ErrorDocument 403 /pub/errors/404.php |
289 | 115 | <IfModule mod_headers.c> |
290 | | - Header set X-Content-Type-Options "nosniff" |
291 | | - Header set X-XSS-Protection "1; mode=block" |
| 116 | + Header set X-UA-Compatible "IE=edge" |
| 117 | + <FilesMatch "\.(appcache|atom|bbaw|bmp|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$"> |
| 118 | + Header unset X-UA-Compatible |
| 119 | + </FilesMatch> |
292 | 120 | </IfModule> |
0 commit comments