Created
May 9, 2024 09:36
-
-
Save rizkytegar/13009c9c36e231a59de6f7b0f64daf4f to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
location /storage { | |
alias /var/www/html/storage; | |
index index.xml; | |
# Set custom error pages for 404 and 403 | |
error_page 404 /storage/404.xml; | |
error_page 403 /storage/403.xml; | |
# Allow serving only whitelisted file extensions | |
location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|docx|doc|pdf|ppt|pptx)$ { | |
try_files $uri =404; | |
} | |
# Limit maximum file size for uploads | |
client_max_body_size 10M; # Change the value as needed | |
# Whitelist allowed file extensions for uploads | |
if ($request_filename ~* ^.*?\.(exe|php|py|pl|cgi|bin|sh|bat|dll|asp|aspx|jsp|html|htm|shtml|phtml|php3|php4|php5|php6|php7)$) { | |
return 403; | |
} | |
# Block PHP execution | |
location ~ \.php$ { | |
deny all; | |
} | |
# Additional security measures can be added here | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment