[Tests] IBX-7818: Fixed direct acces to index.php with long URL

micszo · micszo · commit e6ac11fd95f9 · 2024-10-03T12:16:54.000+02:00
diff --git a/templates/apache2/vhost.template b/templates/apache2/vhost.template
@@ -100,7 +100,7 @@
         RewriteRule ^/(css|js|fonts?)/.*\.(css|js|otf|eot|ttf|svg|woff) - [L]
 
         # Prevent access to website with direct usage of index.php in URL
-        RewriteRule ^/([^/]+/)?index\.php([/?#]|$) - [R=404,L]
+        RewriteRule ^/([^/]+/)*?index\.php([/?#]|$) - [R=404,L]
 
         RewriteRule .* /index.php
     </IfModule>
diff --git a/templates/nginx/ez_params.d/ez_rewrite_params b/templates/nginx/ez_params.d/ez_rewrite_params
@@ -19,7 +19,7 @@ rewrite "^/build/(.*)" "/build/$1" break;
 rewrite "^/assets/(.*)" "/assets/$1" break;
 
 # Prevent access to website with direct usage of index.php in URL
-if ($request_uri ~ "^/([^/]+/)?index\.php([/?#]|$)") {
+if ($request_uri ~ "^/([^/]+/)*?index\.php([/?#]|$)") {
     return 404;
 }
 

Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ rewrite "^/build/(.*)" "/build/$1" break;`
`19`	`19`	`rewrite "^/assets/(.*)" "/assets/$1" break;`
`20`	`20`
`21`	`21`	`# Prevent access to website with direct usage of index.php in URL`
`22`		`-if ($request_uri ~ "^/([^/]+/)?index\.php([/?#]\|$)") {`
	`22`	`+if ($request_uri ~ "^/([^/]+/)*?index\.php([/?#]\|$)") {`
`23`	`23`	`return 404;`
`24`	`24`	`}`
`25`	`25`