From: Robert Kaiser <kairo@kairo.at>
Date: Sun, 18 Aug 2024 13:15:09 +0000 (+0200)
Subject: add UnsafeAllow3F flag so auth keeps on working after Apache security fixes
X-Git-Url: https://git-public.kairo.at/?a=commitdiff_plain;h=db9f4a49b1e7a1efc553861b502df2cf1ac72574;p=authserver.git

add UnsafeAllow3F flag so auth keeps on working after Apache security fixes
---

diff --git a/app/.htaccess b/app/.htaccess
index 839b7b0..98c194c 100644
--- a/app/.htaccess
+++ b/app/.htaccess
@@ -4,5 +4,5 @@ Options -MultiViews
 RewriteEngine On
 # Send calls to the PHP equivalents.
 RewriteCond %{query_string} ^(.+) [NC]
-RewriteRule ^(authorize|token|api)$ $1.php?%1 [L,NE,PT]
-RewriteRule ^(authorize|token|api)$ $1.php [L,NE,PT]
+RewriteRule ^(authorize|token|api)$ $1.php?%1 [L,NE,PT,UnsafeAllow3F]
+RewriteRule ^(authorize|token|api)$ $1.php [L,NE,PT,UnsafeAllow3F]