felixalb/pvv-nixos-config
1
0
Fork 0
mirror of https://git.pvv.ntnu.no/Drift/pvv-nixos-config.git synced 2026-06-16 17:49:13 +02:00
Code Issues Projects Releases Wiki Activity

temmie/userweb: render path denylist into Directory/Files directives

Browse Source
This commit is contained in:
h7x4
2026-06-16 18:52:25 +09:00
parent 8252bba3ad
commit b738f08c09
1 changed files with 42 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files
hosts/temmie/services/userweb/httpd.nix
+42 -27
View File
@@ -103,38 +103,53 @@ in
Require all granted Require all granted
</Directory> </Directory>
<DirectoryMatch "^/home/pvv/.*/web-docs/(${lib.concatStringsSep "|" [ ${lib.concatMapStringsSep "\n" (d: ''
"\\.git" <Directory "${d}">
"\\.hg" Require all denied
"\\.svn" </Directory>
"\\.ssh" '') [
"\\.env" ".git"
"\\.env\\..*" ".hg"
"\\.envs" ".svn"
"\\.envs\\..*" ".ssh"
"\\.envrc" ".bzr"
"\\.bzr" ".venv"
"\\.venv"
"CVS" "CVS"
"RCS" "RCS"
".*\\.swp" "*.bak"
".*~" "*.bak*"
"*.bkp"
"*.bkp*"
"*.backup"
"*.backup*"
]}
".*\\.bak" ${lib.concatMapStringsSep "\n" (d: ''
".*\\.bak.*" <Files "${d}">
".*\\.bkp"
".*\\.bkp.*"
".*\\.backup"
".*\\.backup.*"
".*\\.lck"
".*\\.lock"
"LCK\\.\\..*"
]})(/|$)">
AllowOverride All
Require all denied Require all denied
</DirectoryMatch> </Files>
'') [
".env"
".env.*"
".envs"
".envs.*"
".envrc"
"*.swp"
"*~"
"*.bak"
"*.bak*"
"*.bkp"
"*.bkp*"
"*.backup"
"*.backup*"
"*.lck"
"*.lock"
"LCK..*"
]}
<FilesMatch ".+\.ph(p[3457]?|t|tml)$"> <FilesMatch ".+\.ph(p[3457]?|t|tml)$">
SetHandler application/x-httpd-php SetHandler application/x-httpd-php