Suite migration en Joomla v4.2.x (depuis v3.x): nettoyage .htaccess ?

Réduire
X
 
  • Filtrer
  • Heure
  • Afficher
Tout effacer
nouveaux messages

  • [RÉGLÉ] Suite migration en Joomla v4.2.x (depuis v3.x): nettoyage .htaccess ?

    Bonjour,
    suite à la migration d'un site de Joomla v2.x puis v3.x vers v4.2.5, je constate que l'historique de modifications dan s .htaccess a été conservé.
    Hébergement = OVH mutualisé
    Faut-il reconfigurer le fichier pour la v4 (suppression des anciennes configs...) pour adapter ? Voir contenu du fichier
    Merci pour vos conseils et votre aide.



    ##
    # @package Joomla
    # Copyright Copyright (C) 2005 - 2020 Open Source Matters. All rights reserved.
    # @license GNU General Public License version 2 or later; see LICENSE.txt
    ##

    ##
    # READ THIS COMPLETELY IF YOU CHOOSE TO USE THIS FILE!
    #
    # The line 'Options +FollowSymLinks' may cause problems with some server configurations.
    # It is required for the use of Apache mod_rewrite, but it may have already been set by
    # your server administrator in a way that disallows changing it in this .htaccess file.
    # If using it causes your site to produce an error, comment it out (add # to the
    # beginning of the line), reload your site in your browser and test your sef urls. If
    # they work, then it has been set by your server administrator and you do not need to
    # set it here.
    ##

    ## Depuis 3.9.22 - Update Concerning Directory Listings
    <IfModule mod_autoindex.c>
    IndexIgnore *
    </IfModule>

    ## Depuis 3.9.21 - svg files potential Cross-Site-Scripting (XSS) vulnerabilities
    <FilesMatch "\.svg$">
    <IfModule mod_headers.c>
    Header always set Content-Security-Policy "script-src 'none'"
    </IfModule>
    </FilesMatch>

    ## Depuis 3.9.3 - Suppress mime type detection in browsers for unknown types
    <IfModule mod_headers.c>
    Header always set X-Content-Type-Options "nosniff"
    </IfModule>

    ## Can be commented out if causes errors, see notes above.
    Options +FollowSymlinks
    Options -Indexes

    ## Mod_rewrite in use.

    RewriteEngine On

    ## Begin - Rewrite rules to block out some common exploits.
    # If you experience problems on your site then comment out the operations listed
    # below by adding a # to the beginning of the line.
    # This attempts to block the most common type of exploit `attempts` on Joomla!
    #
    # Block any script trying to base64_encode data within the URL.
    RewriteCond %{QUERY_STRING} base64_encode[^(]*\([^)]*\) [OR]
    # Block any script that includes a <script> tag in URL.
    RewriteCond %{QUERY_STRING} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR]
    # Block any script trying to set a PHP GLOBALS variable via URL.
    RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
    # Block any script trying to modify a _REQUEST variable via URL.
    RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
    # Return 403 Forbidden header and show the content of the root home page
    RewriteRule .* index.php [F]
    #
    ## End - Rewrite rules to block out some common exploits.

    ## Begin - Custom redirects
    #
    # If you need to redirect some pages, or set a canonical non-www to
    # www redirect (or vice versa), place that code here. Ensure those
    # redirects use the correct RewriteRule syntax and the [R=301,L] flags.
    #
    ## End - Custom redirects

    ##
    # Uncomment the following line if your webserver's URL
    # is not directly related to physical file paths.
    # Update Your Joomla! Directory (just / for root).
    ##

    # RewriteBase /

    ## Begin - Joomla! core SEF Section.
    #
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
    #
    # If the requested path and file is not /index.php and the request
    # has not already been internally rewritten to the index.php script
    RewriteCond %{REQUEST_URI} !^/index\.php
    # and the requested path and file doesn't directly match a physical file
    RewriteCond %{REQUEST_FILENAME} !-f
    # and the requested path and file doesn't directly match a physical folder
    RewriteCond %{REQUEST_FILENAME} !-d
    # internally rewrite the request to the index.php script
    RewriteRule .* index.php [L]
    #
    Dernière édition par francois76 à 03/12/2022, 10h28

  • #2
    Bonjour,

    Dans la mesure où il n'y a pas de personnalisation avec du code supplémentaire, tu peux supprimer ce .htaccess et renommer le htaccess.txt en .htaccess pour utiliser la version standard.
    "Patience et longueur de temps font plus que force ni que rage..." (La Fontaine : Le Lion et le Rat) - "Il n'y a pas de problèmes; il n'y a que des solutions" (André Gide).
    MoovJla et LazyDbBackup sur www.joomxtensions.com - FaQ sur www.fontanil.info - Site pro : www.robertg-conseil.fr chez PHPNET, sites perso chez PlanetHoster + sites gérés chez PHPNET, PlanetHoster, Ionos et OVH

    Commentaire


    • #3
      Bonjour RobertG,
      je te remercie pour ta réponse.
      Je n'ai plus le fichier .htaccess.txt d'origine.
      J'ai fait un test de supprimer complètement le .htaccess mais les menus ne fonctionnent plus.
      Aurais tu le fichier .htaccess.txt standard d'origine (j'imagine que celui-ci est créé par une installation de J4) ?
      Je te remercie pour ton aide.

      Commentaire


      • #4
        Bonjour,

        Récupère un pack d'installation ou de mise à jour de la version 4, décompresse-le et tu pourras récupérer ce htaccess.txt
        "Patience et longueur de temps font plus que force ni que rage..." (La Fontaine : Le Lion et le Rat) - "Il n'y a pas de problèmes; il n'y a que des solutions" (André Gide).
        MoovJla et LazyDbBackup sur www.joomxtensions.com - FaQ sur www.fontanil.info - Site pro : www.robertg-conseil.fr chez PHPNET, sites perso chez PlanetHoster + sites gérés chez PHPNET, PlanetHoster, Ionos et OVH

        Commentaire


        • #5
          Bonjour RobertG,
          je te remercie pour cette bonne idée.
          Action réalisée, mise en service du fichier htaccess.txt d'origine de la la distribution Joomla v4.2.5 avec renommage en .htaccess.
          Pas de problème rencontré, tout semble très bien fonctionner.
          Encore merci pour ton aide efficace et ton support.
          Bon week-end.
          François

          Commentaire


          • #6
            Pour les personnes intéressées: fichier htaccess.txt d'origine

            ##
            # @package Joomla
            # Copyright (C) 2005 Open Source Matters, Inc. <https://www.joomla.org>
            # @license GNU General Public License version 2 or later; see LICENSE.txt
            ##

            ##
            # READ THIS COMPLETELY IF YOU CHOOSE TO USE THIS FILE!
            #
            # The line 'Options +FollowSymLinks' may cause problems with some server configurations.
            # It is required for the use of Apache mod_rewrite, but it may have already been set by
            # your server administrator in a way that disallows changing it in this .htaccess file.
            # If using it causes your site to produce an error, comment it out (add # to the
            # beginning of the line), reload your site in your browser and test your sef urls. If
            # they work, then it has been set by your server administrator and you do not need to
            # set it here.
            ##

            ## MISSING CSS OR JAVASCRIPT ERRORS
            #
            # If your site looks strange after enabling this file, then your server is probably already
            # gzipping css and js files and you should comment out the GZIP section of this file.
            ##

            ## OPENLITESPEED
            #
            # If you are using an OpenLiteSpeed web server then any changes made to this file will
            # not take effect until you have restarted the web server.
            ##

            ## Can be commented out if causes errors, see notes above.
            Options +FollowSymlinks
            Options -Indexes

            ## No directory listings
            <IfModule mod_autoindex.c>
            IndexIgnore *
            </IfModule>

            ## Suppress mime type detection in browsers for unknown types
            <IfModule mod_headers.c>
            Header always set X-Content-Type-Options "nosniff"
            </IfModule>

            ## Protect against certain cross-origin requests. More information can be found here:
            ## https://developer.mozilla.org/en-US/...e_Policy_(CORP)
            ## https://web.dev/why-coop-coep/
            #<IfModule mod_headers.c>
            # Header always set Cross-Origin-Resource-Policy "same-origin"
            # Header always set Cross-Origin-Embedder-Policy "require-corp"
            #</IfModule>

            ## Disable inline JavaScript when directly opening SVG files or embedding them with the object-tag
            <FilesMatch "\.svg$">
            <IfModule mod_headers.c>
            Header always set Content-Security-Policy "script-src 'none'"
            </IfModule>
            </FilesMatch>

            ## These directives are only enabled if the Apache mod_rewrite module is enabled
            <IfModule mod_rewrite.c>
            RewriteEngine On

            ## Begin - Rewrite rules to block out some common exploits.
            # If you experience problems on your site then comment out the operations listed
            # below by adding a # to the beginning of the line.
            # This attempts to block the most common type of exploit `attempts` on Joomla!
            #
            # Block any script trying to base64_encode data within the URL.
            RewriteCond %{QUERY_STRING} base64_encode[^(]*\([^)]*\) [OR]
            # Block any script that includes a <script> tag in URL.
            RewriteCond %{QUERY_STRING} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR]
            # Block any script trying to set a PHP GLOBALS variable via URL.
            RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
            # Block any script trying to modify a _REQUEST variable via URL.
            RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
            # Return 403 Forbidden header and show the content of the root home page
            RewriteRule .* index.php [F]
            #
            ## End - Rewrite rules to block out some common exploits.

            ## Begin - Custom redirects
            #
            # If you need to redirect some pages, or set a canonical non-www to
            # www redirect (or vice versa), place that code here. Ensure those
            # redirects use the correct RewriteRule syntax and the [R=301,L] flags.
            #
            ## End - Custom redirects

            ##
            # Uncomment the following line if your webserver's URL
            # is not directly related to physical file paths.
            # Update Your Joomla! Directory (just / for root).
            ##

            # RewriteBase /

            ## Begin - Joomla! core SEF Section.
            #
            # PHP FastCGI fix for HTTP Authorization, required for the API application
            RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
            # -- SEF URLs for the API application
            # If the requested path starts with /api, the file is not /api/index.php
            # and the request has not already been internally rewritten to the
            # api/index.php script
            RewriteCond %{REQUEST_URI} ^/api/
            RewriteCond %{REQUEST_URI} !^/api/index\.php
            # and the requested path and file doesn't directly match a physical file
            RewriteCond %{REQUEST_FILENAME} !-f
            # and the requested path and file doesn't directly match a physical folder
            RewriteCond %{REQUEST_FILENAME} !-d
            # internally rewrite the request to the /api/index.php script
            RewriteRule .* api/index.php [L]
            # -- SEF URLs for the public frontend application
            # If the requested path and file is not /index.php and the request
            # has not already been internally rewritten to the index.php script
            RewriteCond %{REQUEST_URI} !^/index\.php
            # and the requested path and file doesn't directly match a physical file
            RewriteCond %{REQUEST_FILENAME} !-f
            # and the requested path and file doesn't directly match a physical folder
            RewriteCond %{REQUEST_FILENAME} !-d
            # internally rewrite the request to the index.php script
            RewriteRule .* index.php [L]
            #
            ## End - Joomla! core SEF Section.
            </IfModule>

            ## These directives are only enabled if the Apache mod_rewrite module is disabled
            <IfModule !mod_rewrite.c>
            <IfModule mod_alias.c>
            # When Apache mod_rewrite is not available, we instruct a temporary redirect
            # of the start page to the front controller explicitly so that the website
            # and the generated links can still be used.
            RedirectMatch 302 ^/$ /index.php/
            # RedirectTemp cannot be used instead
            </IfModule>
            </IfModule>

            ## GZIP
            ## These directives are only enabled if the Apache mod_headers module is enabled.
            ## This section will check if a .gz file exists and if so will stream it
            ## directly or fallback to gzip any asset on the fly
            ## If your site starts to look strange after enabling this file, and you see
            ## ERR_CONTENT_DECODING_FAILED in your browser console network tab,
            ## then your server is already gzipping css and js files and you don't need this
            ## block enabled in your .htaccess
            <IfModule mod_headers.c>
            # Serve gzip compressed CSS files if they exist
            # and the client accepts gzip.
            RewriteCond "%{HTTP:Accept-encoding}" "gzip"
            RewriteCond "%{REQUEST_FILENAME}\.gz" -s
            RewriteRule "^(.*)\.css" "$1\.css\.gz" [QSA]

            # Serve gzip compressed JS files if they exist
            # and the client accepts gzip.
            RewriteCond "%{HTTP:Accept-encoding}" "gzip"
            RewriteCond "%{REQUEST_FILENAME}\.gz" -s
            RewriteRule "^(.*)\.js" "$1\.js\.gz" [QSA]

            # Serve correct content types, and prevent mod_deflate double gzip.
            RewriteRule "\.css\.gz$" "-" [T=text/css,E=no-gzip:1]
            RewriteRule "\.js\.gz$" "-" [T=text/javascript,E=no-gzip:1]

            <FilesMatch "(\.js\.gz|\.css\.gz)$">
            # Serve correct encoding type.
            Header append Content-Encoding gzip

            # Force proxies to cache gzipped &
            # non-gzipped css/js files separately.
            Header append Vary Accept-Encoding
            </FilesMatch>
            </IfModule>

            Commentaire

            Annonce

            Réduire
            Aucune annonce pour le moment.

            Partenaire de l'association

            Réduire

            Hébergeur Web PlanetHoster
            Travaille ...
            X