但拒绝直接访问文件

但拒绝直接访问文件

本文介绍了重写文件扩展名,但拒绝直接访问文件的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我正在寻找一种通过.htaccess隐藏文件扩展名并拒绝直接访问的方法.让我们考虑以下内容:

I am looking for a way to hide the file extension via .htaccess and deny direct access. Let's consider the following:

http://www.xyz.zyx/index.php

被转换为

http://www.xyz.zyx/index OR http://www.xyz.zyx/

到目前为止一切都很好.我接下来要做的是在用户尝试直接访问时阻止或重定向.例如,如果用户在URL栏中键入以下内容(扩展名),则阻止或重定向:

All good till now. What I want to do next is block or redirect when the user tries a direct access. Example, if the user types in the URL bar the following (extension), block or redirect:

http://www.xyz.zyx/index.php

我检查了其他问题的其他答案,但似乎并非如此.

I checked the other answers from other questions, but non seemed to be exactly it.

在此先感谢您帮助像我这样的新手.

推荐答案

尽管可能会质疑这种事情的用处,但它是可行的,因此下面是在.htaccess中使用mod_rewrite进行操作的方法:

Although one may question the usefulness of such a thing, it's feasible, so here's how to do it in a .htaccess using mod_rewrite:

RewriteEngine On

# Sets your index script
RewriteRule ^$ index.php [L]

# Condition prevents redirect loops (when script is not found)
RewriteCond %{ENV:REDIRECT_STATUS} !^$
RewriteCond %{REQUEST_FILENAME} !-f

# Stop here if the file is not found after a redirect
RewriteRule ^(.*)$ notfound.php [L]

# Condition prevents redirect loops (when script is found)
RewriteCond %{ENV:REDIRECT_STATUS} ^$

# Forbid access directly to PHP files
RewriteRule ^.*?\.php$ forbidden [F,L]

# Make sure the filename does not actually exist (images, etc.)
RewriteCond %{REQUEST_FILENAME} !-f

# Append the .php extension to the URI
RewriteRule ^(.*)$ $1.php [L]

这篇关于重写文件扩展名,但拒绝直接访问文件的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

08-14 19:14