# by denying dot files and rewrite request to the front controller
location ^~ /.well-known/ {
allow all;
- try_files $uri /index.php?pagename=$uri&$args;
+ rewrite ^ /index.php?pagename=$uri;
}
include mime.types;
location ~ /\. {
deny all;
}
+
+ # deny access to the CLI scripts
+ location ^~ /bin {
+ deny all;
+ }
}