Comments (9)
@mickgeek - thanks for your response. Feel free to check out the issue here:
https://huntr.dev/bounties/c717b606-c214-4928-9fba-5588171e7b18/
from yii2-advanced-one-domain-config.
Thank you for the report.
In the configuration you can comment the block that prevent the redirect to the address with the trailing slash:
location = /admin {
try_files $uri /backend/web/index.php$is_args$args;
}
After it the /admin
request will be redirect automatically.
Also if you have a big project, follow these recommendations:
- define the
user
directive and use specific permissions to directories and files (e.g.700 (-rwx------)
); - separate the frontend and backend parts to different domains.
from yii2-advanced-one-domain-config.
If you need to use the apache.conf
configuration, just comment the below rule:
RewriteRule ^/admin$ /admin/ [L,PT]
About permissions, any service can execute from any user. See also information about Suexec.
from yii2-advanced-one-domain-config.
Hi.
Thanks. You can write about a vulnerability here if it exists, just create a new issue.
from yii2-advanced-one-domain-config.
Is this limited to the included nginx configuration only or is it also present in the apache config?
from yii2-advanced-one-domain-config.
@mickgeek - if possible, are you able to update the status of the report?
from yii2-advanced-one-domain-config.
Sorry, I do not have an account on this site.
from yii2-advanced-one-domain-config.
@mickgeek - no worries 👍 Do you have an e-mail I can send a magic URL to? This will allow you to update the report without having to sign-up.
from yii2-advanced-one-domain-config.
You can find contacts on the profile page.
from yii2-advanced-one-domain-config.
Related Issues (20)
- Add configuration for IIS HOT 1
- Apache 2.4 version HOT 1
- nginx: url alias with same name as folder name not working
- All links of the site always loads the home page. HOT 3
- Why don't use Alias in Apache? HOT 4
- Nginx config HOT 2
- subdirectory url is not removing HOT 1
- Combine redirect https rule HOT 10
- adding a new URI HOT 2
- Used your settings htaccess etc but not working :( HOT 1
- If you have 500 internal error after change .htaccess
- Inside subdirectory HOT 1
- Kk
- Internal server error 500 after making changes HOT 15
- how to configure if Yii2 advance template is installed under sub directory of Document root? HOT 13
- phpMyAdmin HOT 1
- add one line in /etc/hosts file for work all... HOT 1
- Options not allowed here: .htaccess HOT 3
- No longer fully working since nginx 1.8.1 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from yii2-advanced-one-domain-config.