| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402 |
- ############################################
- ## overrides deployment configuration mode value
- ## use command bin/magento deploy:mode:set to switch modes
- # SetEnv MAGE_MODE developer
- ############################################
- ## uncomment these lines for CGI mode
- ## make sure to specify the correct cgi php binary file name
- ## it might be /cgi-bin/php-cgi
- # Action php5-cgi /cgi-bin/php5-cgi
- # AddHandler php5-cgi .php
- ############################################
- ## GoDaddy specific options
- # Options -MultiViews
- ## you might also need to add this line to php.ini
- ## cgi.fix_pathinfo = 1
- ## if it still doesn't work, rename php.ini to php5.ini
- ############################################
- ## this line is specific for 1and1 hosting
- #AddType x-mapp-php5 .php
- #AddHandler x-mapp-php5 .php
- ############################################
- ## enable usage of methods arguments in backtrace
- SetEnv MAGE_DEBUG_SHOW_ARGS 1
- ############################################
- ## default index file
- DirectoryIndex index.php
- ############################################
- ## adjust memory limit
- php_value memory_limit 756M
- php_value max_execution_time 18000
- ############################################
- ## disable automatic session start
- ## before autoload was initialized
- php_flag session.auto_start off
- ############################################
- ## enable resulting html compression
- #php_flag zlib.output_compression on
- ###########################################
- ## disable user agent verification to not break multiple image upload
- php_flag suhosin.session.cryptua off
- <IfModule mod_security.c>
- ###########################################
- ## disable POST processing to not break multiple image upload
- SecFilterEngine Off
- SecFilterScanPOST Off
- </IfModule>
- <IfModule mod_deflate.c>
- ############################################
- ## enable apache served files compression
- ## http://developer.yahoo.com/performance/rules.html#gzip
- # Insert filter on all content
- ###SetOutputFilter DEFLATE
- # Insert filter on selected content types only
- #AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/javascript application/x-javascript application/json image/svg+xml
- # Netscape 4.x has some problems...
- #BrowserMatch ^Mozilla/4 gzip-only-text/html
- # Netscape 4.06-4.08 have some more problems
- #BrowserMatch ^Mozilla/4\.0[678] no-gzip
- # MSIE masquerades as Netscape, but it is fine
- #BrowserMatch \bMSIE !no-gzip !gzip-only-text/html
- # Don't compress images
- #SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary
- # Make sure proxies don't deliver the wrong content
- #Header append Vary User-Agent env=!dont-vary
- </IfModule>
- <IfModule mod_ssl.c>
- ############################################
- ## make HTTPS env vars available for CGI mode
- SSLOptions StdEnvVars
- </IfModule>
- ############################################
- ## workaround for Apache 2.4.6 CentOS build when working via ProxyPassMatch with HHVM (or any other)
- ## Please, set it on virtual host configuration level
- ## SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1
- ############################################
- <IfModule mod_rewrite.c>
- ############################################
- ## enable rewrites
- # The following line has better security but add some performance overhead - see https://httpd.apache.org/docs/2.4/en/misc/perf-tuning.html
- Options -FollowSymLinks +SymLinksIfOwnerMatch
- RewriteEngine on
- ############################################
- ## you can put here your magento root folder
- ## path relative to web root
- #RewriteBase /magento/
- ############################################
- ## workaround for HTTP authorization
- ## in CGI environment
- RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
- ############################################
- ## TRACE and TRACK HTTP methods disabled to prevent XSS attacks
- RewriteCond %{REQUEST_METHOD} ^TRAC[EK]
- RewriteRule .* - [L,R=405]
- ############################################
- ## redirect for mobile user agents
- #RewriteCond %{REQUEST_URI} !^/mobiledirectoryhere/.*$
- #RewriteCond %{HTTP_USER_AGENT} "android|blackberry|ipad|iphone|ipod|iemobile|opera mobile|palmos|webos|googlebot-mobile" [NC]
- #RewriteRule ^(.*)$ /mobiledirectoryhere/ [L,R=302]
- ############################################
- ## never rewrite for existing files, directories and links
- RewriteCond %{REQUEST_FILENAME} !-f
- RewriteCond %{REQUEST_FILENAME} !-d
- RewriteCond %{REQUEST_FILENAME} !-l
- ############################################
- ## rewrite everything else to index.php
- RewriteRule .* index.php [L]
- </IfModule>
- ############################################
- ## Prevent character encoding issues from server overrides
- ## If you still have problems, use the second line instead
- AddDefaultCharset Off
- #AddDefaultCharset UTF-8
- AddType 'text/html; charset=UTF-8' html
- <IfModule mod_expires.c>
- ############################################
- ## Add default Expires header
- ## http://developer.yahoo.com/performance/rules.html#expires
- ExpiresDefault "access plus 1 year"
- ExpiresByType text/html A0
- ExpiresByType text/plain A0
- </IfModule>
- ###########################################
- ## Deny access to root files to hide sensitive application information
- RedirectMatch 403 /\.git
- <Files composer.json>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files composer.lock>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .gitignore>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .htaccess>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .htaccess.sample>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .php_cs.dist>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .travis.yml>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files CHANGELOG.md>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files COPYING.txt>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files Gruntfile.js>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files LICENSE.txt>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files LICENSE_AFL.txt>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files nginx.conf.sample>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files package.json>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files php.ini.sample>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files README.md>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files magento_umask>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files auth.json>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- <Files .user.ini>
- <IfVersion < 2.4>
- order allow,deny
- deny from all
- </IfVersion>
- <IfVersion >= 2.4>
- Require all denied
- </IfVersion>
- </Files>
- # For 404s and 403s that aren't handled by the application, show plain 404 response
- ErrorDocument 404 /pub/errors/404.php
- ErrorDocument 403 /pub/errors/404.php
- ################################
- ## If running in cluster environment, uncomment this
- ## http://developer.yahoo.com/performance/rules.html#etags
- #FileETag none
- # ######################################################################
- # # INTERNET EXPLORER #
- # ######################################################################
- # ----------------------------------------------------------------------
- # | Document modes |
- # ----------------------------------------------------------------------
- # Force Internet Explorer 8/9/10 to render pages in the highest mode
- # available in the various cases when it may not.
- #
- # https://hsivonen.fi/doctype/#ie8
- #
- # (!) Starting with Internet Explorer 11, document modes are deprecated.
- # If your business still relies on older web apps and services that were
- # designed for older versions of Internet Explorer, you might want to
- # consider enabling `Enterprise Mode` throughout your company.
- #
- # https://msdn.microsoft.com/en-us/library/ie/bg182625.aspx#docmode
- # http://blogs.msdn.com/b/ie/archive/2014/04/02/stay-up-to-date-with-enterprise-mode-for-internet-explorer-11.aspx
- <IfModule mod_headers.c>
- Header set X-UA-Compatible "IE=edge"
- # `mod_headers` cannot match based on the content-type, however,
- # the `X-UA-Compatible` response header should be send only for
- # HTML documents and not for the other resources.
- <FilesMatch "\.(appcache|atom|bbaw|bmp|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
- Header unset X-UA-Compatible
- </FilesMatch>
- </IfModule>
|
