From 5b3a63485511198d8d70714b5ced30ac0aade4de Mon Sep 17 00:00:00 2001
From: Carsten Karbach <carstenkarbach@gmx.de>
Date: Mon, 26 Jun 2017 19:54:41 +0200
Subject: [PATCH] Do not allow access to root html directory

---
 Dockerfile  | 3 +++
 LICENSE.txt | 1 +
 2 files changed, 4 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index d414aa7..84e41e8 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -42,6 +42,9 @@ RUN a2ensite default-ssl.conf
 # Set access rights for www-data, run composer
 RUN php /var/www/html/EventsAPI/utils/install.php
 
+# DO not allow access to root doc
+RUN echo "deny from all" > /var/www/html/.htaccess
+
 # Default command       
 CMD ["apachectl", "-D", "FOREGROUND"]
 
diff --git a/LICENSE.txt b/LICENSE.txt
index 2d204bc..9254d7a 100644
--- a/LICENSE.txt
+++ b/LICENSE.txt
@@ -14,4 +14,5 @@ EventsAPI -- Application for receiving events
 	INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 	LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 	OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+	
 	
\ No newline at end of file
-- 
GitLab