spekkionu/zfapp/master/public/.htaccess - Htaccess File

spekkionu/zfapp/master/public/.htaccess

# ----------------------------------------------------------------------
# Default Document
# ----------------------------------------------------------------------
DirectoryIndex index.html index.htm index.php bootstrap.php

# ----------------------------------------------------------------------
# RSS Feeds
# ----------------------------------------------------------------------
AddType application/rss+xml .xml
AddType application/atom+xml .xml

# ----------------------------------------------------------------------
# Rewrite Rules
# ----------------------------------------------------------------------
<IfModule mod_rewrite.c>
  RewriteEngine On

  RewriteCond %{REQUEST_METHOD} GET
  RewriteCond %{DOCUMENT_ROOT}/cached/index.html -f
  RewriteRule ^/*$ cached/index.html [L]
   
  RewriteCond %{REQUEST_METHOD} GET
  RewriteCond %{DOCUMENT_ROOT}/cached/%{REQUEST_URI}.html -f
  RewriteRule .* cached/%{REQUEST_URI}.html [L]
   
  RewriteCond %{REQUEST_FILENAME} -s [OR]
  RewriteCond %{REQUEST_FILENAME} -l [OR]
  RewriteCond %{REQUEST_FILENAME} -d
  RewriteRule ^.*$ - [NC,L]

  RewriteRule ^.*$ bootstrap.php [NC,L]
</IfModule>

# ----------------------------------------------------------------------
# Gzip compression
# ----------------------------------------------------------------------

<IfModule mod_deflate.c>

# Force deflate for mangled headers developer.yahoo.com/blogs/ydn/posts/2010/12/pushing-beyond-gzipping/
<IfModule mod_setenvif.c>
  <IfModule mod_headers.c>
    SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip|deflate)s*,?s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding
    RequestHeader append Accept-Encoding "gzip,deflate" env=HAVE_Accept-Encoding
  </IfModule>
</IfModule>

# HTML, TXT, CSS, JavaScript, JSON, XML, HTC:
<IfModule filter_module>
  FilterDeclare   COMPRESS
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $text/html
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $text/css
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $text/plain
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $text/xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $text/x-component
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/javascript
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/json
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/xhtml+xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/rss+xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/atom+xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/vnd.ms-fontobject
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $image/svg+xml
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $application/x-font-ttf
  FilterProvider  COMPRESS  DEFLATE resp=Content-Type $font/opentype
  FilterChain     COMPRESS
  FilterProtocol  COMPRESS  DEFLATE change=yes;byteranges=no
</IfModule>

<IfModule !mod_filter.c>
  # Legacy versions of Apache
  AddOutputFilterByType DEFLATE text/html text/plain text/css application/json
  AddOutputFilterByType DEFLATE application/javascript
  AddOutputFilterByType DEFLATE text/xml application/xml text/x-component
  AddOutputFilterByType DEFLATE application/xhtml+xml application/rss+xml application/atom+xml
  AddOutputFilterByType DEFLATE image/svg+xml application/vnd.ms-fontobject application/x-font-ttf font/opentype
</IfModule>
</IfModule>

# ----------------------------------------------------------------------
# Stop screen flicker in IE on CSS rollovers
# ----------------------------------------------------------------------

# The following directives stop screen flicker in IE on CSS rollovers - in
# combination with the "ExpiresByType" rules for images (see above). If
# needed, un-comment the following rules.

# BrowserMatch "MSIE" brokenvary=1
# BrowserMatch "Mozilla/4.[0-9]{2}" brokenvary=1
# BrowserMatch "Opera" !brokenvary
# SetEnvIf brokenvary 1 force-no-vary

# ----------------------------------------------------------------------
# Cookie setting from iframes
# ----------------------------------------------------------------------

# Allow cookies to be set from iframes (for IE only)
# If needed, uncomment and specify a path or regex in the Location directive

# <IfModule mod_headers.c>
#   <Location />
#     Header set P3P "policyref="/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT""
#   </Location>
# </IfModule>

# ----------------------------------------------------------------------
# UTF-8 encoding
# ----------------------------------------------------------------------

# Use UTF-8 encoding for anything served text/plain or text/html
AddDefaultCharset utf-8

# Force UTF-8 for a number of file formats
AddCharset utf-8 .html .css .js .xml .json .rss .atom

# ----------------------------------------------------------------------
# A little more security
# ----------------------------------------------------------------------

# Do we want to advertise the exact version number of Apache we're running?
# Probably not.
## This can only be enabled if used in httpd.conf - It will not work in .htaccess
# ServerTokens Prod

# "-Indexes" will have Apache block users from browsing folders without a default document
# Usually you should leave this activated, because you shouldn't allow everybody to surf through
# every folder on your server (which includes rather private places like CMS system folders).
Options -Indexes

# Block access to "hidden" directories whose names begin with a period. This
# includes directories used by version control systems such as Subversion or Git.
<IfModule mod_rewrite.c>
  RewriteRule "(^|/)." - [F]
</IfModule>

<IfModule php5_module>
  # If your server is not already configured as such, the following directive
  # should be uncommented in order to set PHP's register_globals option to OFF.
  # This closes a major security hole that is abused by most XSS (cross-site
  # scripting) attacks. For more information: http://php.net/register_globals
  #
  # IF REGISTER_GLOBALS DIRECTIVE CAUSES 500 INTERNAL SERVER ERRORS :
  #
  # Your server does not allow PHP directives to be set via .htaccess. In that
  # case you must make this change in your php.ini file instead. If you are
  # using a commercial web host, contact the administrators for assistance in
  # doing this. Not all servers allow local php.ini files, and they should
  # include all PHP configurations (not just this one), or you will effectively
  # reset everything to PHP defaults. Consult www.php.net for more detailed
  # information about setting PHP directives.

  php_flag register_globals Off

  # Rename session cookie to something else, than PHPSESSID
  # php_value session.name sid

  # Do not show you are using PHP
  # Note: Move this line to php.ini since it won't work in .htaccess
  # php_flag expose_php Off

  # Level of log detail - log all errors
  php_value error_reporting -1

  # Write errors to log file
  php_flag log_errors On

  # Do not display errors in browser (production - Off, development - On)
  php_flag display_errors Off

  # Do not display startup errors (production - Off, development - On)
  php_flag display_startup_errors Off

  # Format errors in plain text
  # Note: Leave this setting 'On' for xdebug's var_dump() output
  # php_flag html_errors Off

  # Show multiple occurrence of error
  php_flag ignore_repeated_errors Off

  # Show same errors from different sources
  # php_flag ignore_repeated_source Off

  # Size limit for error messages
  # php_value log_errors_max_len 1024

  # Don't precede error with string (doesn't accept empty string, use whitespace if you need)
  # php_value error_prepend_string " "

  # Don't prepend to error (doesn't accept empty string, use whitespace if you need)
  # php_value error_append_string " "

  # Increase cookie security
  php_value session.cookie_httponly true
</IfModule>

On Github License

Files

Download PDF of Htaccess file
DEFLATE, DOCUMENT_ROOT, force-no-vary, GET, REQUEST_FILENAME, REQUEST_METHOD, REQUEST_URI

Comments

Apache