.htaccess 3.29 KB
Newer Older
Julien Jorry committed
1
SetOutputFilter DEFLATE
2 3 4 5 6 7 8 9 10 11 12
AddOutputFilterByType DEFLATE "application/atom+xml" "application/javascript" "application/json" "application/ld+json" "application/manifest+json" "application/rdf+xml" "application/rss+xml" "application/schema+json" "application/vnd.geo+json" "application/vnd.ms-fontobject" "application/x-font-ttf" "application/x-javascript" "application/x-web-app-manifest+json" "application/xhtml+xml" "application/xml" "font/eot" "font/opentype" "image/bmp" "image/svg+xml" "image/vnd.microsoft.icon" "image/x-icon" "text/cache-manifest" "text/css" "text/html" "text/javascript" "text/plain" "text/vcard" "text/vnd.rim.location.xloc" "text/vtt" "text/x-component" "text/x-cross-domain-policy" "text/xml" "application/x-font-woff" "application/x-font-woff2" "font/woff" "font/woff2"

Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload"
Header set X-Content-Type-Options "nosniff"
Header set X-Content-Security-Policy "allow 'self';"
Header set Content-Security-Policy "upgrade-insecure-requests"

Header set X-XSS-Protection "1; mode=block"
Header set X-Frame-Options SAMEORIGIN
Header always edit Set-Cookie (.*) "$1; HTTPOnly; Secure"

Julien Jorry committed
13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
AddType image/x-icon .ico
AddType application/x-web-app-manifest+json .webapp
AddType font/ttf .ttf
AddType font/otf .otf
AddType font/woff .woff
AddType font/woff2 .woff2

<IfModule mod_rewrite.c>
    Options -MultiViews
    RewriteEngine On
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^(.*)$ index.php [QSA,L]
</IfModule>

<IfModule !mod_rewrite.c>
    <IfModule mod_alias.c>
        RedirectMatch 302 ^/$ /index.php/
    </IfModule>
</IfModule>
32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80

<IfModule mod_expires.c>
 ExpiresActive On
 ExpiresDefault "access plus 7200 seconds"
 ExpiresByType image/jpg "access plus 1 month"
 ExpiresByType image/jpeg "access plus 1 month"
 ExpiresByType image/png "access plus 1 month"
 ExpiresByType image/gif "access plus 1 month"
 ExpiresByType image/ico "access plus 1 month"
 ExpiresByType image/icon "access plus 1 month"
 ExpiresByType image/x-icon "access plus 1 month"
 ExpiresByType text/css "access plus 1 month"
 ExpiresByType text/javascript "access plus 1 month"
 ExpiresByType text/x-javascript "access plus 1 month"
 ExpiresByType text/html "access plus 7200 seconds"
 ExpiresByType application/xhtml+xml "access plus 7200 seconds"
 ExpiresByType application/javascript "access plus 1 month"
 ExpiresByType application/x-javascript "access plus 1 month"

 ExpiresByType application/x-font-ttf "access plus 1 year"
 ExpiresByType font/opentype "access plus 1 year"
   
 ExpiresByType font/woff  "access plus 1 year"
 ExpiresByType application/font-woff  "access plus 1 year"
 ExpiresByType application/x-font-woff "access plus 1 year"

 ExpiresByType font/woff2  "access plus 1 year"
 ExpiresByType application/font-woff2  "access plus 1 year"
 ExpiresByType application/x-font-woff2  "access plus 1 year"
</IfModule>


<IfModule mod_headers.c>
 <FilesMatch "\.(ico|jpg|png|gif|css)$">
 Header set Cache-Control "max-age=2592000, public"
 </FilesMatch>
 <FilesMatch "\.(css|js)$">
 Header set Cache-Control "max-age=2592000, private"
 </FilesMatch>
 <filesMatch "\.(html|htm)$">
 Header set Cache-Control "max-age=7200, public"
 </filesMatch>
 <FilesMatch "\.(php|cgi)$">
 Header unset Cache-Control
 </FilesMatch>
</IfModule>

Header unset ETag
FileETag none