sosuke.iwabuchi
/
HT_DASHBOARD_frontend
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
21 提交
1 分支
527KB
分支: develop
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'develop'
${ noResults }
HT_DASHBOARD_frontend/public/.htaccess

60 行
2.3KB
原始文件 永久链接 Blame 文件历史 

  1. <IfModule mod_rewrite.c>

  2.     <IfModule mod_negotiation.c>

  3.         Options -MultiViews -Indexes

  4.     </IfModule>

  5. 

  6.     RewriteEngine On

  7. 

  8.     # 環境判定判定

  9.     SetEnvIf HOST "^.*easyreceipt.jp$" isProduction=yes

  10.     SetEnvIf HOST "15.152.238.14" isStaging=yes

  11.     SetEnvIf HOST "^localhost.*$" isLocal=yes

  12.     

  13. 

  14.     # SSL強制

  15.     RewriteCond %{ENV:isProduction} yes

  16.     RewriteCond %{HTTPS} off

  17.     RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

  18.     

  19.     # SSL強制のキャッシュ

  20.     Header set "Strict-Transport-Security" "max-age=86400" env=isProduction

  21.     

  22.     Header unset X-Powered-By

  23. 

  24.     Header set "Content-Security-Policy" "default-src 'self';style-src 'self' 'unsafe-inline' fonts.googleapis.com;img-src 'self' data: api.iconify.design;font-src 'self' fonts.gstatic.com;frame-ancestors 'none';form-action 'self';connect-src 'self' https:" env=isProduction

  25.     Header set "Content-Security-Policy" "default-src 'self';style-src 'self' 'unsafe-inline' fonts.googleapis.com;img-src 'self' data: api.iconify.design;font-src 'self' fonts.gstatic.com;frame-ancestors 'none';form-action 'self';connect-src 'self' https:" env=isStaging

  26. 

  27.     Header set "X-Frame-Options" "deny" env=isProduction

  28.     Header set "X-Frame-Options" "deny" env=isStaging

  29. 

  30.     Header set "Cache-Control" "no-cache, no-store, must-revalidate"

  31.     

  32.     # Handle Authorization Header

  33.     RewriteCond %{HTTP:Authorization} .

  34.     RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

  35. 

  36.     # Redirect Trailing Slashes If Not A Folder...

  37.     RewriteCond %{REQUEST_FILENAME} !-d

  38.     RewriteCond %{REQUEST_URI} (.+)/$

  39.     RewriteRule ^ %1 [L,R=301]

  40. 

  41.     # Send Requests To Front Controller...

  42.     RewriteCond %{REQUEST_FILENAME} !-d

  43.     RewriteCond %{REQUEST_FILENAME} !-f

  44.     RewriteRule ^ index.php [L]

  45. 

  46.     # 以下、ファイルアクセス

  47.     # リソース判定

  48.     SetEnvIf Request_URI "^\/static\/js\/.+\.js$" isJsFile=yes

  49.     SetEnvIf Request_URI "^\/static\/css\/.+\.css$" isCssFile=yes

  50.     SetEnvIf Request_URI "^\/fonts\/.+$" isFontFile=yes

  51. 

  52.     Header set "Cache-Control" "private, no-cache" env=isJsFile

  53.     Header set "Cache-Control" "private, no-cache" env=isCssFile

  54.     Header set "Cache-Control" "private, no-cache" env=isFontFile

  55. 

  56.     Header set "X-Content-Type-Options" "nosniff" env=isProduction

  57.     Header set "X-Content-Type-Options" "nosniff" env=isStaging

  58. 

  59. </IfModule>