Apache allow OIDC (#6893)

fix https://github.com/FreshRSS/FreshRSS/issues/6890 Fix regression from https://github.com/FreshRSS/FreshRSS/pull/6881
2026-05-16 12:24:46 -04:00 · 2024-10-13 18:04:06 +02:00
parent ccb132523a
commit a686429090
2 changed files with 4 additions and 4 deletions
--- a/.htaccess.dist
+++ b/.htaccess.dist
@@ -1,7 +1,7 @@
 # Copy this file to `.htaccess` for additional root-level protection
 # if you cannot set Apache `DocumentRoot` to `./p/` as recommended.

-# Deny files starting with a dot, or without extension, or not in a whitelist of extensions
-<FilesMatch "^\.|^[^.]+$|\.(?!css|gif|html|ico|js|php|png|svg|txt|woff|woff2)[^.]*$">
+# Deny files starting with a dot, or without extension (except some), or not in a whitelist of extensions
+<FilesMatch "^\.|^(?!oidc)[^.]+$|\.(?!css|gif|html|ico|js|php|png|svg|txt|woff|woff2)[^.]*$">
 	Require all denied
 </FilesMatch>
--- a/p/.htaccess
+++ b/p/.htaccess
@@ -1,6 +1,6 @@
 <IfModule mod_authz_core.c>
-	# Deny files starting with a dot, or without extension, or not in a whitelist of extensions
-	<FilesMatch "^\.|^[^.]+$|\.(?!css|gif|html|ico|js|php|png|svg|txt|woff|woff2)[^.]*$">
+	# Deny files starting with a dot, or without extension (except some), or not in a whitelist of extensions
+	<FilesMatch "^\.|^(?!oidc)[^.]+$|\.(?!css|gif|html|ico|js|php|png|svg|txt|woff|woff2)[^.]*$">
 		Require all denied
 	</FilesMatch>
 </IfModule>