add acl.conf

docs/files/etc/nginx/common/acl.conf

@@ -0,0 +1,8 @@
+	# EasyEngine (ee) protect locations using
+	# HTTP authentication || IP address
+	satisfy any;
+	auth_basic "Restricted Area";
+	auth_basic_user_file htpasswd-ee;
+	# Allowed IP Address List
+	allow 127.0.0.1;
+	deny all;

etc/nginx/common/acl.conf

@@ -0,0 +1,8 @@
+	# EasyEngine (ee) protect locations using
+	# HTTP authentication || IP address
+	satisfy any;
+	auth_basic "Restricted Area";
+	auth_basic_user_file htpasswd-ee;
+	# Allowed IP Address List
+	allow 127.0.0.1;
+	deny all;

etc/nginx/common/locations-php7.conf

@@ -29,7 +29,7 @@ location ~* \.(?:css(\.map)?|js(\.map)?)$ {
 }
 # Security settings for better privacy
 # Deny hidden files
-location ~ /\. {
+location ~ /\.(?!well-known\/) {
     deny all;
 }
 # Use the directory /var/www/html to valide acme-challenge

etc/nginx/common/locations-php71.conf

@@ -31,8 +31,8 @@ location ~* \.(?:css(\.map)?|js(\.map)?)$
 }
 # Security settings for better privacy
 # Deny hidden files
-location ~ /\. {
-  deny all;
+location ~ /\.(?!well-known\/) {
+    deny all;
 }
 # Use the directory /var/www/html to valide acme-challenge
 # just create the sub-directories .well-known/acme-challenge and set www-data as owner

etc/nginx/common/locations-php72.conf

@@ -35,7 +35,7 @@ location ~* \.(?:css(\.map)?|js(\.map)?)$ {
 }
 # Security settings for better privacy
 # Deny hidden files
-location ~ /\. {
+location ~ /\.(?!well-known\/) {
     deny all;
 }
 # Use the directory /var/www/html to valide acme-challenge