Merge pull request #1107 from virtualtam/apache/htaccess/jwt-header

httpd: always forward the 'Authorization' header
This commit is contained in:
VirtualTam 2018-03-25 19:04:05 +02:00 committed by GitHub
commit 1f43529fd0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -6,6 +6,10 @@ RewriteEngine On
# Prevent accessing subdirectories not managed by SCM # Prevent accessing subdirectories not managed by SCM
RewriteRule ^(.git|doxygen|vendor) - [F] RewriteRule ^(.git|doxygen|vendor) - [F]
# Forward the "Authorization" HTTP header
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule .* - [e=HTTP_AUTHORIZATION:%1]
# REST API # REST API
RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_FILENAME} !-d