Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
41,500 Commits
38 Branches
675 Tags
792 MiB
Commit Graph

160 Commits (9.5.x)

Author SHA1 Message Date
Dave Long 03de0c83b9
Issue #3336463 by sleitner, recrit, catch: Htaccess rewrite rules for gzipped CSS and JavaScript aggregates never match 
(cherry picked from commit 1d3e0326a5)
 2023-03-30 15:03:51 +01:00
xjm 6942a3897f
Issue #3327115 by Eric_A, alexpott, xjm, longwave, pandaski: .htaccess rules broken since yarn.lock got added 
(cherry picked from commit efb94e3a54)
 2022-12-14 21:05:50 -06:00
catch 398f375bd5 Issue #3308369 by JeroenT, cilefen: Block access to yarn.lock and package.json 
(cherry picked from commit 2233484fba)
 2022-11-17 16:57:48 +00:00
Alex Pott 8412918b4d
Issue #1040534 by catch, Owen Barton, danreb, mikeytown2, ogi, omega8cc, xjm: Rewrite rules for gzipped CSS and JavaScript aggregates cause lots of lstats for files that will never exist 
(cherry picked from commit a6c49dbae4)
 2022-10-03 14:14:43 +01:00
Alex Pott 04c799d13b
Issue #3079404 by anavarre: Document that .htaccess 301s get the ExpiresDefault value of 2 weeks instead of the Drupal value 
(cherry picked from commit 104b0e0807)
 2022-09-26 13:04:49 +01:00
Alex Pott d0be0af780
Issue #3186524 by longwave, alexpott, xjm, Spokje: Fix htaccess files for PHP 8 
(cherry picked from commit 87fc0a7d04)
 2021-12-21 09:27:32 +00:00
Alex Pott 952c086697
Issue #2989262 by Daniel Korte, Kristen Pol: Escape all RewriteCond/RewriteRule .htaccess dots 2020-07-17 08:47:57 +01:00
Alex Pott a585dd6a7e
Issue #2455465 by stefan.r, Darren Oh, cosmicdreams, longwave, benjy, alexpott: Add mod_php7 check to htaccess and remove php5 code 2020-04-17 12:48:45 +01:00
Alex Pott 511b1b69df
Issue #2960808 by mfb: Disable brotli compression of pre-compressed CSS and JS 2019-12-04 16:36:43 +00:00
Alex Pott dfa4cdebef
Issue #2948579 by greggles, mcdruid, longwave, Chi, rabbitlair, alexpott, DKAN, beckydev, interX, sammuell: Block web.config in .htaccess (and vice-versa) 2019-04-16 17:10:51 +01:00
Nathaniel Catchpole b52ac5eb58 Issue #2408321 by mfb, sanduhrs, D34dMan, C_Logemann, xumepadismal, John Morahan, serg2, walterebert, David Grudl: Support RFC 5785 by whitelisting the .well-known directory 2017-02-09 19:56:05 +00:00
xjm 17ff00c6c4 SA-CORE-2016-003 by alexpott, Michael Dowling, mlhess, xjm, Pere Orga, dawehner, greggles, coltrane, pwolanin, larowlan 2016-07-18 17:32:46 +02:00
Nathaniel Catchpole 9a283adf64 Issue #2408321 by mfb, D34dMan, C_Logemann, serg2, walterebert, sanduhrs, John Morahan: Support RFC 5785 by whitelisting the .well-known directory 2016-02-29 09:32:03 +09:00
Alex Pott 580b4cf09a Issue #2392153 by mparker17, hussainweb, chris.smith, alexpott, dawehner: Disallow composer.json and composer.lock from being indexed 2016-01-18 14:53:59 +00:00
Nathaniel Catchpole dc736e7217 Issue #1269780 by hswong3i, damien_vancouver, Agileware, ricardoamaro, alexpott, axel.rutz, yannickoo: Remove symlinks option from .htaccess 2015-11-09 18:22:09 +00:00
Alex Pott 4a34451192 Issue #2382513 by mikeker, chris_hall_hu_cheng, joachim, joelpittet, alexpott, YesCT, quietone, mikeker, Jeroen, joris_lucius, katy5289, sivaji@knackforge.com: Regression fix: allow Drupal 8 to work without Apache mod_rewrite 2015-07-28 09:52:04 +01:00
Alex Pott cc34748c31 Issue #2408013 by Aki Tendo, alexpott, Fabianx, dawehner, Crell, jhodgdon, Wim Leers, aspilicious: Adding Assertions to Drupal - Test Tools 2015-07-21 14:29:05 +01:00
Nathaniel Catchpole acf91933f9 Issue #2508666 by alexpott, pwolanin, benjy: Drupal 8 .htaccess rule to prevent php file access can be easily bypassed 2015-06-24 10:15:36 +01:00
Alex Pott 23e7b47779 Issue #2279105 by mgifford, nidaismailshah, thedavidmeister, amitgoyal, rpayanm, ameenkhan07, rakhimandhania, jhodgdon: Remove as many "..." and ellipsis characters from the codebase as possible without altering the meaning of text 2015-06-08 23:40:25 +01:00
webchick ce86b59eba Issue #2456025 by stefan.r, alexpott, klausi: Rest tests fail on PHP 5.6 because of always_populate_raw_post_data ini setting 2015-05-19 15:49:00 -07:00
Alex Pott 84c2ccf468 Issue #2092245 by jbrown, rpayanm: SVGZ isn't served with correct encoding 2015-03-14 00:02:04 +00:00
catch 95fe74d571 Issue #2406681 by tstoeckler, hussainweb, alexpott, ParisLiakos, almaudoh, tadityar: Add an autoload.php in the repo root to control the autoloader of front controllers 2015-03-11 08:31:22 +00:00
Alex Pott 1f380a6548 Issue #462950 by pwolanin: Mitigate the security risks that come from IE and other browsers trying to sniff the mime type 2015-01-05 09:57:30 +00:00
Nathaniel Catchpole 7725fcf661 Issue #1956698 by Gábor Hojtsy, xjm, alexpott, damiankloip, mgifford: Prevent access to YAML files using .htaccess and web.config. 2014-10-23 14:11:12 +01:00
Alex Pott 9315a45e01 Issue #2338759 by StryKaizer, tom_ek | alexpott: Fixed core/update.php is now just update.php. 2014-10-04 17:29:36 +02:00
Nathaniel Catchpole 3afec501d4 Issue #2250119 by ParisLiakos, Devin Carlson: Run updates in a full environment. 2014-09-02 10:28:33 +01:00
Alex Pott 168c314dc2 Issue #1587270 by klausi, greggles, sun: Forbid execution of PHP files in subfolders by default (except those needed by core). 2014-07-13 10:21:34 +01:00
Nathaniel Catchpole 5e58da00e6 Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel. 2014-06-26 11:47:01 +01:00
Alex Pott 6d2ce628bc Revert "Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel." 
This reverts commit cda051c425.
 2014-06-05 12:53:24 -05:00
Nathaniel Catchpole cda051c425 Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel. 2014-06-05 11:30:04 +01:00
Dries b75e86ae94 Issue #2253109 by alexpott, ParisLiakos: Followup: Bring .htaccess and web.config up to date. 2014-05-28 15:13:32 -04:00
webchick 4e2f0f3976 Issue #2253109 by ParisLiakos: Bring .htaccess and web.config up to date. 2014-05-16 11:14:55 -07:00
Alex Pott 9e72c8bfaf Issue #1599774 by longwave, kristofferwiklund, BTMash, marcingy | Letharion: .htaccess protections do not work on Apache 2.4 without mod_access_compat. 2014-03-29 16:28:16 +01:00
Dries 3a5c3b322a Issue #2152073 by dmouse, sun, Xano: Bump Drupal core's PHP requirement to 5.4.2. 2014-02-27 20:14:53 +01:00
Nathaniel Catchpole 52d3b49336 Issue #2097189 by damiankloip, sun, Albert Volkman, chx: Add a rebuild script. 2013-12-10 13:50:21 +00:00
Alex Pott bc44cbda91 Issue #1587270 by klausi: Added comment in .htaccess describing how to forbid execution of PHP files in subfolders. 2013-10-03 12:23:10 +01:00
Nathaniel Catchpole 1c9bd12778 Remove accidentally committed profiling cruft from .htaccess 2013-07-05 15:36:57 +01:00
Nathaniel Catchpole 58850a9493 Issue #1921426 by dawehner, chx, agentrickard, marcingy, alexpott: Move node access storage to DIC. 2013-07-05 14:39:57 +01:00
webchick a3a2b14f5e Issue #1962780 by David_Rothstein, petyovsky: Fixed 500 Internal server error on Apache 1.x servers after updating to Drupal 7.22. 2013-04-10 11:40:59 -07:00
catch 32806c41c8 Issue #670454 by pwolanin, cburschka, effulgentsia: Fixed Support HTTP Authorization in CGI environment. 2013-02-14 14:08:22 +00:00
webchick 8ad7708bd7 Issue #1907704 by ultimateboy, totten, acrollet, greggles: Restrict temporary files created by text editors. 2013-02-08 18:24:14 -08:00
catch 7525d1a702 Issue #1733476 by greggles, BMDan: Fixed Make default htaccess rules protocol sensitive to avoid man-in-the-middle-attacks if users don't fully customize the rule. 2012-11-20 11:07:38 +00:00
Dries 99243487d7 - Patch #1578590 by ksenzee: references to nonexistent function drupal_initialize_variables(). 2012-05-16 21:27:25 -04:00
catch d13fd18f1e Issue #1551626 by sun, Crell: Convert cron.php into a regular menu router page callback. 2012-05-07 11:50:05 +09:00
Nathan Haug f434037c0e Issue #22336 by quicksketch, scor, boombatower, and rfay. Move all core Drupal files under a core subdirectory. 2011-11-01 12:48:40 +09:00
Dries Buytaert 4b522e22ad - Patch #806974 by kiamlaluno, rocket_nova: fixed punctuation errors in messages. 2011-10-01 15:47:01 -04:00
Dries Buytaert 778ea2ceeb - Patch #1116416 by Kars-T, Coornail: use 'Header set' instead of 'Header append' in .htaccess to avoid double encoding. 2011-09-18 20:41:59 -04:00
Dries Buytaert 3b1d2f387f - Patch #76824 by geerlingguy, xjm, droplet, kbahey: Drupal should not handle 404 for certain files. Oh yeah. 2011-09-14 16:24:19 -04:00
Dries Buytaert b556c02492 - Patch #1110810 by JohnAlbin, TR: CVS $ tag lurks in .htaccess file (and other dank corners of Drupal). 2011-04-23 20:28:33 -04:00
Dries Buytaert fdc91796bf - Patch #919596 by mathroc, AnalogFile, dmitrig01, boombatower: -MultiViews in .htaccess requires odd AllowOverride Options=All,MultiViews. 2011-04-23 20:25:43 -04:00