158 lines
6.6 KiB
ApacheConf
158 lines
6.6 KiB
ApacheConf
AddDefaultCharset utf-8
|
|
Options -Indexes
|
|
|
|
# TO ADD IN VHOST CONF OF APACHE
|
|
# <Directory /home/rooty/webpub/qware.fr/www/data/image/icons/node/>
|
|
# Options Indexes FollowSymLinks SymLinksIfOwnerMatch
|
|
# DirectoryIndex index.png
|
|
# </Directory>
|
|
|
|
<Files "cron.php">
|
|
Order allow,deny
|
|
Deny from all
|
|
</Files>
|
|
|
|
<IfModule mod_headers.c>
|
|
<IfModule mod_env.c>
|
|
# Add security and privacy related headers
|
|
|
|
# Avoid doubled headers by unsetting headers in "onsuccess" table,
|
|
# then add headers to "always" table
|
|
Header onsuccess unset Referrer-Policy
|
|
Header always set Referrer-Policy "no-referrer"
|
|
|
|
Header onsuccess unset X-Content-Type-Options
|
|
Header always set X-Content-Type-Options "nosniff"
|
|
|
|
Header onsuccess unset X-Download-Options
|
|
Header always set X-Download-Options "noopen"
|
|
|
|
Header onsuccess unset X-Frame-Options
|
|
Header always set X-Frame-Options "SAMEORIGIN"
|
|
|
|
Header onsuccess unset X-Permitted-Cross-Domain-Policies
|
|
Header always set X-Permitted-Cross-Domain-Policies "none"
|
|
|
|
Header onsuccess unset X-Robots-Tag
|
|
Header always set X-Robots-Tag "none"
|
|
|
|
Header onsuccess unset X-XSS-Protection
|
|
Header always set X-XSS-Protection "1; mode=block"
|
|
|
|
Header onsuccess unset Strict-Transport-Security
|
|
Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains; preload"
|
|
|
|
Header onsuccess unset Permissions-Policy
|
|
Header always set Permissions-Policy "geolocation=(self);midi=(self);microphone=(self);camera=(self);fullscreen=(self);payment=()"
|
|
|
|
Header onsuccess unset Content-Security-Policy
|
|
# Header always set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' https:; style-src 'self' 'unsafe-inline' https:; img-src https:; font-src https:; form-action https:;"
|
|
Header always set Content-Security-Policy "script-src 'self' 'unsafe-inline' https:; style-src 'self' 'unsafe-inline' https:; font-src https:; form-action https:;"
|
|
|
|
SetEnv modHeadersAvailable true
|
|
</IfModule>
|
|
</IfModule>
|
|
|
|
<IfModule mod_php7.c>
|
|
php_value mbstring.func_overload 0
|
|
php_value default_charset 'UTF-8'
|
|
php_value output_buffering 0
|
|
php_value memory_limit 512M
|
|
<IfModule mod_env.c>
|
|
SetEnv htaccessWorking true
|
|
</IfModule>
|
|
</IfModule>
|
|
|
|
<IfModule mod_php8.c>
|
|
php_value mbstring.func_overload 0
|
|
php_value default_charset 'UTF-8'
|
|
php_value output_buffering 0
|
|
php_value memory_limit 512M
|
|
<IfModule mod_env.c>
|
|
SetEnv htaccessWorking true
|
|
</IfModule>
|
|
</IfModule>
|
|
|
|
<IfModule mod_rewrite.c>
|
|
RewriteEngine on
|
|
|
|
# Prévention des attaques cross site tracing
|
|
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
|
|
RewriteRule .* - [F]
|
|
|
|
# RewriteCond %{HTTP_HOST} !^www\.
|
|
# RewriteRule ^(.*)$ http://www.%{HTTP_HOST}/$1 [R=301,L]
|
|
|
|
RewriteRule ^tournoi ./warshellzfr-117-tournoi_octobre_-actionGuest-77.htm?abs=1
|
|
RewriteRule ^tournoi-hellz ./warshellzfr-117-tournoi_octobre_-actionGuest-77.htm?abs=1
|
|
|
|
# RewriteRule ^accueil ./wwwfab_lorg-142-accueil-actionLectureInfo-175.htm
|
|
# RewriteRule ^actualites ./wwwfab_lorg-142-actualites-actionGuest-211.htm
|
|
# RewriteRule ^actualité ./wwwfab_lorg-142-actualites-actionGuest-211.htm
|
|
# RewriteRule ^actualités ./wwwfab_lorg-142-actualites-actionGuest-211.htm
|
|
# RewriteRule ^inscription ./wwwfab_lorg-142-les_communautes-formLecture-2.htm?param=139
|
|
# RewriteRule ^calendrier ./wwwfab_lorg-142-lassociation_lcube-actionLectureInfo-205.htm
|
|
# RewriteRule ^adhesion ./wwwfab_lorg-142-les_communautes-formLectureAdh-2.htm?param=139
|
|
# RewriteRule ^adhesionind ./wwwfab_lorg-142-les_communautes-formLectureAdhPart-2.htm?abs=1¶m=139
|
|
# RewriteRule ^adhesionsoc ./wwwfab_lorg-142-les_communautes-formLectureAdhSoc-2.htm?abs=1¶m=139
|
|
# RewriteRule ^forum ./wwwfab_lorg-142-forum-actionViewer-177.htm
|
|
# RewriteRule ^statuts ./wwwfab_lorg-142-lcube-actionLectureInfo-205.htm?param=2
|
|
# RewriteRule ^regint ./wwwfab_lorg-142-lcube-actionLectureInfo-205.htm?param=3
|
|
# RewriteRule ^confid ./wwwfab_lorg-142-lcube-actionLectureInfo-205.htm?param=4
|
|
# RewriteRule ^legals ./wwwfab_lorg-142-lcube-actionLectureInfo-205.htm?param=5
|
|
# RewriteRule ^contact ./wwwfab_lorg-142-contacts-actionGuest-210.htm?abs=1
|
|
# RewriteRule ^carte ./wwwfab_lorg-142-contacts-actionGuest-210.htm#maplcube
|
|
# RewriteRule ^rss ./wwwfab_lorg-142-actualites-guestRSS-211.htm?abs=1
|
|
# RewriteRule ^japanlive https://fab-l3.org:7443/ofmeet/?r=japanlive
|
|
# RewriteRule ^fr_FR ./?system=language&lid=1
|
|
# RewriteRule ^en_GB ./?system=language&lid=2
|
|
# RewriteRule ^fr-FR ./?system=language&lid=1
|
|
# RewriteRule ^en-GB ./?system=language&lid=2
|
|
|
|
RewriteRule (.*)-(.*)-(.*)-(.*)-(.*)\.htm[l]?$ /index.php?oid=$5&action=$4&navigationNodeId=$2&%{QUERY_STRING} [PT]
|
|
</IfModule>
|
|
|
|
<IfModule pagespeed_module>
|
|
ModPagespeed Off
|
|
</IfModule>
|
|
|
|
ErrorDocument 400 //data/static/html/system/error-400.htm
|
|
ErrorDocument 401 //data/static/html/system/error-401.htm
|
|
ErrorDocument 402 //data/static/html/system/error-402.htm
|
|
ErrorDocument 403 //data/static/html/system/error-403.htm
|
|
ErrorDocument 404 //data/static/html/system/error-404.htm
|
|
ErrorDocument 405 //data/static/html/system/error-405.htm
|
|
ErrorDocument 406 //data/static/html/system/error-406.htm
|
|
ErrorDocument 408 //data/static/html/system/error-408.htm
|
|
|
|
ErrorDocument 500 //data/static/html/system/error-500.htm
|
|
ErrorDocument 501 //data/static/html/system/error-501.htm
|
|
ErrorDocument 502 //data/static/html/system/error-502.htm
|
|
ErrorDocument 503 //data/static/html/system/error-503.htm
|
|
ErrorDocument 504 //data/static/html/system/error-504.htm
|
|
|
|
# SetEnvIfNoCase Referer "^http://www.fab-l3.org/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://www.fab-l3.org/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://www.fab-l3.org$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://www.fab-l3.org$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://fab-l3.org/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://fab-l3.org/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://fab-l3.org$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://fab-l3.org$" locally_linked=1
|
|
#
|
|
# SetEnvIfNoCase Referer "^http://www.fablab87.fr/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://www.fablab87.fr/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://www.fablab87.fr$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://www.fablab87.fr$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://fablab87.fr/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://fablab87.fr/" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^http://fablab87.fr$" locally_linked=1
|
|
# SetEnvIfNoCase Referer "^https://fablab87.fr$" locally_linked=1
|
|
|
|
# SetEnvIfNoCase Referer "^$" locally_linked=1
|
|
# <FilesMatch "\.(js|gif|png|jpe?g)$">
|
|
# Order Deny,Allow
|
|
# Deny from all
|
|
# Allow from env=locally_linked
|
|
# </FilesMatch>
|