Fix .htaccess rewrite rules to not block .well-known URIs (#1490615)
Conflicts:
.htaccess
| | |
| | | # security rules: |
| | | # - deny access to files not containing a dot or starting with a dot |
| | | # in all locations except installer directory |
| | | RewriteRule ^(?!installer)(\.?[^\.]+)$ - [F] |
| | | RewriteRule ^(?!installer|\.well-known\/)(\.?[^\.]+)$ - [F] |
| | | # - deny access to some locations |
| | | RewriteRule ^/?(\.git|\.tx|SQL|bin|config|logs|temp|tests|program\/(include|lib|localization|steps)) - [F] |
| | | # - deny access to some documentation files |
| | |
| | | - Fix PDF support detection in Firefox > 19 (#1490610) |
| | | - Fix path traversal vulnerability in setting a skin (#1490620) |
| | | - Fix so drag-n-drop of text (e.g. recipient addresses) on compose page actually works (#1490619) |
| | | - Fix .htaccess rewrite rules to not block .well-known URIs (#1490615) |
| | | |
| | | RELEASE 1.0.7 |
| | | ------------- |