Home Explore Help
Sign In
bachir
/
grav-muntadas-protocols
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
grav-muntada...
/
webserver-configs
/
Caddyfile

Caddyfile 801 B
Permalink History Raw

123456789101112131415161718192021222324252627282930313233 
  1. :8080
    2. 

  2. gzip
    3. 

  3. fastcgi / 127.0.0.1:9000 php
    4. 

  4. 

  5. # Begin - Security
    6. 

  6. # deny all direct access for these folders
    7. 

  7. rewrite {
    8. 

  8.     r       /(\.git|cache|bin|logs|backups|tests)/.*$
    9. 

  9.     to  	/403
    10. 

  10. }
    11. 

  11. # deny running scripts inside core system folders
    12. 

  12. rewrite {
    13. 

  13.     r       /(system|vendor)/.*\.(txt|xml|md|html|yaml|yml|php|pl|py|cgi|twig|sh|bat)$
    14. 

  14.     to  	/403
    15. 

  15. }
    16. 

  16. # deny running scripts inside user folder
    17. 

  17. rewrite {
    18. 

  18.     r       /user/.*\.(txt|md|yaml|yml|php|pl|py|cgi|twig|sh|bat)$
    19. 

  19.     to  	/403
    20. 

  20. }
    21. 

  21. # deny access to specific files in the root folder
    22. 

  22. rewrite {
    23. 

  23.     r       /(LICENSE\.txt|composer\.lock|composer\.json|nginx\.conf|web\.config|htaccess\.txt|\.htaccess)
    24. 

  24.     to  	/403
    25. 

  25. }
    26. 

  26. 

  27. status 403 /403
    28. 

  28. ## End - Security
    29. 

  29. 

  30. # global rewrite should come last.
    31. 

  31. rewrite {
    32. 

  32.     to  {path} {path}/ /index.php?_url={uri}&{query}
    33. 

  33. }
    34.