geo/geo-coop
geo/geo-coop
7
1
Fork 0
Code Issues 55 Pull requests Projects Releases Packages Wiki Activity Actions

Apply automatic drupal scaffolding updates

Browse source
This commit is contained in:
Keegan Rankin 2024-02-23 13:00:13 -08:00
parent 3480bb4d40
commit 7d5e28470e
3 changed files with 19 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
web/.ht.router.php
View file

@ -39,7 +39,7 @@ if (file_exists(__DIR__ . $url['path'])) {
// Work around the PHP bug. // Work around the PHP bug.
$path = $url['path']; $path = $url['path'];
$script = 'index.php'; $script = 'index.php';
if (strpos($path, '.php') !== FALSE) { if (str_contains($path, '.php')) {
// Work backwards through the path to check if a script exists. Otherwise // Work backwards through the path to check if a script exists. Otherwise
// fallback to index.php. // fallback to index.php.
do { do {

19
web/.htaccess
View file

@ -26,13 +26,6 @@ AddEncoding gzip svgz
# sites/default/default.settings.php and # sites/default/default.settings.php and
# Drupal\Core\DrupalKernel::bootEnvironment() for settings that can be # Drupal\Core\DrupalKernel::bootEnvironment() for settings that can be
# changed at runtime. # changed at runtime.
# PHP 7, Apache 1 and 2.
<IfModule mod_php7.c>
php_value assert.active 0
</IfModule>
# PHP 8, Apache 1 and 2.
<IfModule mod_php.c> <IfModule mod_php.c>
php_value assert.active 0 php_value assert.active 0
</IfModule> </IfModule>
@ -42,8 +35,8 @@ AddEncoding gzip svgz
# Enable expirations. # Enable expirations.
ExpiresActive On ExpiresActive On
# Cache all files and redirects for 2 weeks after access (A). # Cache all files for 1 year after access.
ExpiresDefault A1209600 ExpiresDefault "access plus 1 year"
<FilesMatch \.php$> <FilesMatch \.php$>
# Do not allow PHP scripts to be cached unless they explicitly send cache # Do not allow PHP scripts to be cached unless they explicitly send cache
@ -180,7 +173,13 @@ AddEncoding gzip svgz
# Various header fixes. # Various header fixes.
<IfModule mod_headers.c> <IfModule mod_headers.c>
# Disable content sniffing, since it's an attack vector. # Disable content sniffing for all responses, since it's an attack vector.
# This header is also set in FinishResponseSubscriber, which depending on
# Apache configuration might get placed in the 'onsuccess' table. To prevent
# header duplication, unset that one prior to setting in the 'always' table.
# See "To circumvent this limitation..." in
# https://httpd.apache.org/docs/current/mod/mod_headers.html.
Header onsuccess unset X-Content-Type-Options
Header always set X-Content-Type-Options nosniff Header always set X-Content-Type-Options nosniff
# Disable Proxy header, since it's an attack vector. # Disable Proxy header, since it's an attack vector.
RequestHeader unset Proxy RequestHeader unset Proxy

10
web/robots.txt
View file

@ -37,7 +37,15 @@ Allow: /profiles/*.svg
Disallow: /core/ Disallow: /core/
Disallow: /profiles/ Disallow: /profiles/
# Files # Files
Disallow: /README.txt Disallow: /README.md
Disallow: /composer/Metapackage/README.txt
Disallow: /composer/Plugin/ProjectMessage/README.md
Disallow: /composer/Plugin/Scaffold/README.md
Disallow: /composer/Plugin/VendorHardening/README.txt
Disallow: /composer/Template/README.txt
Disallow: /modules/README.txt
Disallow: /sites/README.txt
Disallow: /themes/README.txt
Disallow: /web.config Disallow: /web.config
# Paths (clean URLs) # Paths (clean URLs)
Disallow: /admin/ Disallow: /admin/