Compare commits
No commits in common. "5ea8f523243701ed260b85e35ac9060ce10c3f9e" and "f213ba4a6550276c6e782fa056c665e0c2ce3df3" have entirely different histories.
5ea8f52324
...
f213ba4a65
1 changed files with 1 additions and 19 deletions
|
@ -67,7 +67,7 @@ If you're using SVR.JS behind a reverse proxy, you need to configure _trustProxy
|
|||
Example _easywaf-config.json_ file:
|
||||
```json
|
||||
{
|
||||
"modules": {
|
||||
"modules" : {
|
||||
"xss": {
|
||||
"excludePaths": "/^\\/(?:git\\/)?(?:(?!\\.git).)*\\.git\\/|^\\/(?:(?:navbar-)?logo|powered).png$/"
|
||||
},
|
||||
|
@ -107,24 +107,6 @@ _View the [change log.](/greenrhombus-changelog)_
|
|||
|
||||
The webroot (_wwwroot_ _config.json_ property) serves as a Next.js application directory. It's recommended to set the owner of the Next.js application directory (around with all the files in it) as the user, on which SVR.JS is running (usually "svrjs"). Setting a `NODE_ENV` environment variable to `development` in SVR.JS configuration enables Next.js development server.
|
||||
|
||||
It's also recommended to forbid the access to ".env" file and ".git" directories, in case Next.js integration mod fails to load. You can set up _nonStandardCodes_ _config.json_ property like this:
|
||||
```json
|
||||
{
|
||||
"nonStandardCodes": [
|
||||
{
|
||||
"scode": 403,
|
||||
"regex": "/^\\/\\.env(?:\\.local)?(?:$|[#?])/"
|
||||
},
|
||||
{
|
||||
"scode": 403,
|
||||
"regex": "/^\\/\\.git/"
|
||||
},
|
||||
...other non-standard codes...
|
||||
],
|
||||
...other config.json properties...
|
||||
}
|
||||
```
|
||||
|
||||
_View the [change log.](/nextjs-integration-changelog)_
|
||||
|
||||
### OrangeCircle
|
||||
|
|
Reference in a new issue