Composer::ensureHtaccess

public static Composer::ensureHtaccess(Event $event)

Ensures that .htaccess and web.config files are present in Composer root.

Parameters

\Composer\Script\Event $event:

File

core/lib/Drupal/Core/Composer/Composer.php, line 110

Class

Composer: Provides static functions for composer script events.

Namespace

Drupal\Core\Composer

Code

public static function ensureHtaccess(Event $event) {

  // The current working directory for composer scripts is where you run
  // composer from.
  $vendor_dir = $event->getComposer()->getConfig()->get('vendor-dir');

  // Prevent access to vendor directory on Apache servers.
  $htaccess_file = $vendor_dir . '/.htaccess';
  if (!file_exists($htaccess_file)) {
    file_put_contents($htaccess_file, FileStorage::htaccessLines(TRUE) . "\n");
  }

  // Prevent access to vendor directory on IIS servers.
  $webconfig_file = $vendor_dir . '/web.config';
  if (!file_exists($webconfig_file)) {
    $lines = <<<EOT
<configuration>
  <system.webServer>
    <authorization>
      <deny users="*">
    </authorization>
  </system.webServer>
</configuration>
EOT;
    file_put_contents($webconfig_file, $lines . "\n");
  }
}

Links:

https://api.drupal.org/api/drupal/core%21lib%21Drupal%21Core%21Composer%21Composer.php/function/Composer%3A%3AensureHtaccess/8.2.x

doc_Drupal

2025-01-10 15:47:30

Comments