aboutsummaryrefslogtreecommitdiffstats
path: root/library/blueimp_upload/server/php/files/.htaccess
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2014-10-05 01:18:50 -0700
committerfriendica <info@friendica.com>2014-10-05 01:18:50 -0700
commit82ba42586cc9427b8a118c30462fc66d92cffecd (patch)
tree6b8866b0f357a4e7cff3b6c80f42c56ad44376c9 /library/blueimp_upload/server/php/files/.htaccess
parent191ef124cf6f6ec3978eededba13bd13463140a1 (diff)
downloadvolse-hubzilla-82ba42586cc9427b8a118c30462fc66d92cffecd.tar.gz
volse-hubzilla-82ba42586cc9427b8a118c30462fc66d92cffecd.tar.bz2
volse-hubzilla-82ba42586cc9427b8a118c30462fc66d92cffecd.zip
add blueimp-jquery-file-upload library
Diffstat (limited to 'library/blueimp_upload/server/php/files/.htaccess')
-rw-r--r--library/blueimp_upload/server/php/files/.htaccess18
1 files changed, 18 insertions, 0 deletions
diff --git a/library/blueimp_upload/server/php/files/.htaccess b/library/blueimp_upload/server/php/files/.htaccess
new file mode 100644
index 000000000..56689f0bb
--- /dev/null
+++ b/library/blueimp_upload/server/php/files/.htaccess
@@ -0,0 +1,18 @@
+# The following directives force the content-type application/octet-stream
+# and force browsers to display a download dialog for non-image files.
+# This prevents the execution of script files in the context of the website:
+ForceType application/octet-stream
+Header set Content-Disposition attachment
+<FilesMatch "(?i)\.(gif|jpe?g|png)$">
+ ForceType none
+ Header unset Content-Disposition
+</FilesMatch>
+
+# The following directive prevents browsers from MIME-sniffing the content-type.
+# This is an important complement to the ForceType directive above:
+Header set X-Content-Type-Options nosniff
+
+# Uncomment the following lines to prevent unauthorized download of files:
+#AuthName "Authorization required"
+#AuthType Basic
+#require valid-user