RewriteEngine On
RewriteBase /blog/
RewriteCond %{HTTPS} off [OR]
RewriteCond %{HTTP_HOST} ^www\. [NC]
RewriteRule ^(.*)$ https://***.id//blog/$1 [L,R=301]
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /blog/index.php [L]
SetEnv HTTPS on
DirectoryIndex index.php
##### No directory listings -- BEGIN
IndexIgnore *
Options -Indexes
##### No directory listings -- END
ErrorDocument 404 /blog/index.php
# Enable expiration control
ExpiresActive On
# No caching for specific resource types
## -- Application cache manifest
ExpiresByType text/cache-manifest "now"
## -- XML and JSON
ExpiresByType application/json "now"
ExpiresByType application/xml "now"
ExpiresByType text/xml "now"
## RSS and Atom feeds: 1 hour (hardcoded)
ExpiresByType application/atom+xml "now plus 1 hour"
ExpiresByType application/rss+xml "now plus 1 hour"
# CSS and JS expiration: 1 week after request
ExpiresByType text/css "now plus 1 week"
ExpiresByType text/javascript "now plus 1 week"
ExpiresByType application/javascript "now plus 1 week"
ExpiresByType application/ld+json "now plus 1 week"
ExpiresByType application/x-javascript "now plus 1 week"
# Image files expiration: 1 month after request
ExpiresByType application/ico "now plus 1 month"
ExpiresByType application/smil "now plus 1 month"
ExpiresByType application/vnd.wap.wbxml "now plus 1 month"
ExpiresByType image/bmp "now plus 1 month"
ExpiresByType image/gif "now plus 1 month"
ExpiresByType image/ico "now plus 1 month"
ExpiresByType image/icon "now plus 1 month"
ExpiresByType image/jp2 "now plus 1 month"
ExpiresByType image/jpeg "now plus 1 month"
ExpiresByType image/jpg "now plus 1 month"
ExpiresByType image/pipeg "now plus 1 month"
ExpiresByType image/png "now plus 1 month"
ExpiresByType image/svg+xml "now plus 1 month"
ExpiresByType image/tiff "now plus 1 month"
ExpiresByType image/vnd.microsoft.icon "now plus 1 month"
ExpiresByType image/vnd.wap.wbmp "now plus 1 month"
ExpiresByType image/webp "now plus 1 month"
ExpiresByType image/x-icon "now plus 1 month"
ExpiresByType text/ico "now plus 1 month"
# Font files expiration: 1 week after request
ExpiresByType application/font-woff "now plus 1 week"
ExpiresByType application/font-woff2 "now plus 1 week"
ExpiresByType application/vnd.ms-fontobject "now plus 1 week"
ExpiresByType application/x-font-opentype "now plus 1 week"
ExpiresByType application/x-font-ttf "now plus 1 week"
ExpiresByType application/x-font-woff "now plus 1 week"
ExpiresByType font/opentype "now plus 1 week"
ExpiresByType font/otf "now plus 1 week"
ExpiresByType font/ttf "now plus 1 week"
ExpiresByType font/woff "now plus 1 week"
ExpiresByType font/woff2 "now plus 1 week"
# Audio files expiration: 1 month after request
ExpiresByType application/ogg "now plus 1 month"
ExpiresByType audio/3gpp "now plus 1 month"
ExpiresByType audio/3gpp2 "now plus 1 month"
ExpiresByType audio/aac "now plus 1 month"
ExpiresByType audio/basic "now plus 1 month"
ExpiresByType audio/mid "now plus 1 month"
ExpiresByType audio/midi "now plus 1 month"
ExpiresByType audio/mp3 "now plus 1 month"
ExpiresByType audio/mpeg "now plus 1 month"
ExpiresByType audio/ogg "now plus 1 month"
ExpiresByType audio/opus "now plus 1 month"
ExpiresByType audio/x-aiff "now plus 1 month"
ExpiresByType audio/x-mpegurl "now plus 1 month"
ExpiresByType audio/x-pn-realaudio "now plus 1 month"
ExpiresByType audio/x-wav "now plus 1 month"
ExpiresByType audio/wav "now plus 1 month"
# Movie files expiration: 1 month after request
ExpiresByType application/x-shockwave-flash "now plus 1 month"
ExpiresByType video/3gpp "now plus 1 month"
ExpiresByType video/3gpp2 "now plus 1 month"
ExpiresByType video/mp4 "now plus 1 month"
ExpiresByType video/mpeg "now plus 1 month"
ExpiresByType video/ogg "now plus 1 month"
ExpiresByType video/quicktime "now plus 1 month"
ExpiresByType video/webm "now plus 1 month"
ExpiresByType video/x-la-asf "now plus 1 month"
ExpiresByType video/x-ms-asf "now plus 1 month"
ExpiresByType video/x-msvideo "now plus 1 month"
ExpiresByType x-world/x-vrml "now plus 1 month"
mod_gzip_on Yes
mod_gzip_dechunk Yes
mod_gzip_item_include file .(html?|txt|css|js|php)$
mod_gzip_item_include handler ^cgi-script$
mod_gzip_item_include mime ^text/.*
mod_gzip_item_include mime ^application/x-javascript.*
mod_gzip_item_exclude mime ^image/.*
mod_gzip_item_exclude rspheader ^Content-Encoding:.*gzip.*
##### Set Header Vary: Accept-Encoding
Header append Vary: Accept-Encoding
##### Rewrite rules to block out some common exploits -- BEGIN
RewriteCond %{QUERY_STRING} proc/self/environ [OR]
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
RewriteCond %{QUERY_STRING} base64_(en|de)code\(.*\) [OR]
RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
RewriteRule .* index.php [F]
##### Rewrite rules to block out some common exploits -- END
RewriteRule ^(\.htaccess|htaccess\.txt|php\.ini|\.user\.ini)$ - [F]
## Protect against clickjacking
Header always append X-Frame-Options SAMEORIGIN
# The `X-Frame-Options` response header should be send only for
# HTML documents and not for the other resources.
Header unset X-Frame-Options
## Remove Apache and PHP version signature
Header always unset X-Powered-By
Header always unset X-Content-Powered-By
ServerSignature Off
# BEGIN REQUIRED FOR WEBFONTS
AddType font/ttf .ttf
AddType font/eot .eot
AddType font/otf .otf
AddType font/woff .woff
AddType font/woff2 .woff2
Header set Access-Control-Allow-Origin "*"
# END REQUIRED FOR WEBFONTS