API: fix sender/recipient of PMs: check api_user before get user info.

[friendica.git] / .htaccess

diff --git a/.htaccess b/.htaccess
index 8c8a8861c466824316310e6a7cf25823bfd37a62..a671cc680aff06f63aa301add63c8cc59c34ad33 100644 (file)
--- a/.htaccess
+++ b/.htaccess
@@ -4,7 +4,14 @@ AddType audio/ogg .oga
 #AddHandler php53-cgi .php
 
 <FilesMatch "\.(out|log)$">
-Deny from all
+  <IfModule authz_host_module>
+    #Apache 2.4
+    Require all denied
+  </IfModule>
+  <IfModule !authz_host_module>
+    #Apache 2.2
+    Deny from all
+  </IfModule>
 </FilesMatch>
 
 <IfModule mod_rewrite.c>
@@ -30,9 +37,4 @@ Deny from all
   RewriteCond %{REQUEST_FILENAME} !-d
   RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]
 
-  # If you want to restrict access to your Friendica site to HTTPS only,
-  # uncommment the following lines
-  RewriteCond %{HTTPS} !=on
-  RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]
 </IfModule>
-