Update default.conf.sample to deny dotfile access#601
Update default.conf.sample to deny dotfile access#601
Conversation
Signed-off-by: Eric Nemchik <eric@nemchik.com>
|
I am a bot, here is the pushed image/manifest for this PR:
|
|
I am a bot, here is the pushed image/manifest for this PR:
|
|
This pull request has been automatically marked as stale because it has not had recent activity. This might be due to missing feedback from OP. It will be closed if no further activity occurs. Thank you for your contributions. |
Signed-off-by: Eric Nemchik <eric@nemchik.com>
There was a problem hiding this comment.
Pull request overview
This PR hardens the default SWAG nginx site sample by adding a broad dotfile deny rule and records the config change in the generated README changelog for existing users.
Changes:
- Add a new nginx location rule intended to deny access to dotfiles in the default site config.
- Add a
.well-knownexception and reformat a few existing commented directives. - Add a changelog entry in
readme-vars.ymltelling existing users to updatesite-confs/default.conf.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
root/defaults/nginx/site-confs/default.conf.sample |
Adds the new dotfile access restriction and .well-known exception in the default nginx site config. |
readme-vars.yml |
Documents the config change in the generated changelog for users updating existing installs. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| index index.html index.htm index.php; | ||
|
|
||
| # Allow access to the ".well-known" directory | ||
| location ^~ /.well-known { |
No description provided.