From db9f4a49b1e7a1efc553861b502df2cf1ac72574 Mon Sep 17 00:00:00 2001 From: Robert Kaiser Date: Sun, 18 Aug 2024 15:15:09 +0200 Subject: [PATCH] add UnsafeAllow3F flag so auth keeps on working after Apache security fixes --- app/.htaccess | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/app/.htaccess b/app/.htaccess index 839b7b0..98c194c 100644 --- a/app/.htaccess +++ b/app/.htaccess @@ -4,5 +4,5 @@ Options -MultiViews RewriteEngine On # Send calls to the PHP equivalents. RewriteCond %{query_string} ^(.+) [NC] -RewriteRule ^(authorize|token|api)$ $1.php?%1 [L,NE,PT] -RewriteRule ^(authorize|token|api)$ $1.php [L,NE,PT] +RewriteRule ^(authorize|token|api)$ $1.php?%1 [L,NE,PT,UnsafeAllow3F] +RewriteRule ^(authorize|token|api)$ $1.php [L,NE,PT,UnsafeAllow3F] -- 2.43.0