问题描述
我正在寻找一种通过.htaccess隐藏文件扩展名并拒绝直接访问的方法.让我们考虑以下内容:
I am looking for a way to hide the file extension via .htaccess and deny direct access. Let's consider the following:
http://www.xyz.zyx/index.php
被转换为
http://www.xyz.zyx/index OR http://www.xyz.zyx/
到目前为止一切都很好.我接下来要做的是在用户尝试直接访问时阻止或重定向.例如,如果用户在URL栏中键入以下内容(扩展名),则阻止或重定向:
All good till now. What I want to do next is block or redirect when the user tries a direct access. Example, if the user types in the URL bar the following (extension), block or redirect:
http://www.xyz.zyx/index.php
我检查了其他问题的其他答案,但似乎并非如此.
I checked the other answers from other questions, but non seemed to be exactly it.
在此先感谢您帮助像我这样的新手.
推荐答案
尽管可能会质疑这种事情的用处,但它是可行的,因此下面是在.htaccess
中使用mod_rewrite
进行操作的方法:
Although one may question the usefulness of such a thing, it's feasible, so here's how to do it in a .htaccess
using mod_rewrite
:
RewriteEngine On
# Sets your index script
RewriteRule ^$ index.php [L]
# Condition prevents redirect loops (when script is not found)
RewriteCond %{ENV:REDIRECT_STATUS} !^$
RewriteCond %{REQUEST_FILENAME} !-f
# Stop here if the file is not found after a redirect
RewriteRule ^(.*)$ notfound.php [L]
# Condition prevents redirect loops (when script is found)
RewriteCond %{ENV:REDIRECT_STATUS} ^$
# Forbid access directly to PHP files
RewriteRule ^.*?\.php$ forbidden [F,L]
# Make sure the filename does not actually exist (images, etc.)
RewriteCond %{REQUEST_FILENAME} !-f
# Append the .php extension to the URI
RewriteRule ^(.*)$ $1.php [L]
这篇关于重写文件扩展名,但拒绝直接访问文件的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!