Reputation: 419
How to block direct requests to php files in specified directory?
I have a master folder where I hold all of my resources such as js, css, images, etc. called /resources/.
In /resources/, I have php files I include on pages of my website, however, they're currently directly accessible if entered into the browser.
Is there a way for me to use .htaccess in that directory to prevent direct requests to any files of certain extensions such as PHP? Hotlinking prevention isn't really what I'm looking for. I just need a way to kill any sort of direct request to these PHP files(in the /resources/ directory specifically) made by anything other than the website itself.
Any help is appreciated. Thank you very much.
Upvotes: 3
Views: 1205
Answers (1)
Reputation: 7773
Add a .htaccess in your /resources/ folder containing the following
<Files ~ "\.php$">
Order allow,deny
Deny from all
</Files>
It should prevent access to all .php files
Upvotes: 7
Related Questions
- Block access to PHP file using .htaccess
- Prevent direct access to .php files in .htaccess
- PHP - how to prevent .php files from direct access
- .htaccess deny php files from all except index
- Deny access to all PHP files in a directory using .htaccess
- How to forbid HTTP access to PHP files?
- Make php files under a certain directory unaccessible using htaccess
- Htaccess Block all php file in certain directories
- .htaccess deny access to just PHP files
- Block direct access to php files with rewrite