I’ve this .htaccess file that move all the request to index.php?request=(URI) that elaborates them,

Question

0

Asked: May 26, 20262026-05-26T20:26:30+00:00 2026-05-26T20:26:30+00:00

I’ve this .htaccess file that move all the request to index.php?request=(URI) that elaborates them,

0

I’ve this .htaccess file that move all the request to index.php?request=(URI) that elaborates them, except for URI that starts with -file/ that means we are trying to access a public file. Inside the system/root/ there’s only the public index.php file that manage the request so that final users cannot see any system/ file. And application/public/ contains only CSS, images, javascript and public stuff.

Is this safe?

RewriteEngine On

RewriteRule -file/(.*) application/public/$1 [L]

# RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^(.*)$ system/root/index.php?request=$1 [NC,L]

It works, but does this code has something more that should be deleted or something that miss that should be added?
The commented line has any sense now?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-26T20:26:31+00:00

Editorial Team

2026-05-26T20:26:31+00:00Added an answer on May 26, 2026 at 8:26 pm

It should be

RewriteRule ^-file/(.*) application/public/$1 [L]

Otherwise, it would match something like

http://domain.com/controller/method/any-file/

Unless you know that you’ll never use -file in any of your system/root requests.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’ve this .htaccess file that move all the request to index.php?request=(URI) that elaborates them,

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply