now letsencrypt is creating a .htaccess file with re-write rules which kills most of our .well-known routes

2017-08-31 17:47:32 -07:00 · 2017-08-31 17:47:32 -07:00 · 6d87311394
commit 6d87311394
parent aec92e0e17
1 changed files with 12 additions and 0 deletions
--- a/Zotlabs/Web/Router.php
+++ b/Zotlabs/Web/Router.php
@ -119,6 +119,18 @@ class Router {

 			if(! (\App::$module_loaded)) {

+				// undo the setting of a letsencrypt acme-challenge rewrite rule
+				// which blocks access to our .well-known routes.
+				// Also provide a config setting for sites that have a legitimate need
+				// for a custom .htaccess in the .well-known directory; but they should
+				// make the file read-only so letsencrypt doesn't modify it
+
+				if(strpos($_SERVER['REQUEST_URI'],'/.well-known/') === 0) {
+					if(file_exists('.well-known/.htaccess') && get_config('system','fix_apache_acme',true)) {
+						rename('.well-known/.htaccess','.well-known/.htaccess.old');
+					}
+				}
+
 				$x = [ 
 					'module' => $module, 
 					'installed' => \App::$module_loaded,