Deploy .htaccess - Skip Root Directory

Require all denied Require all granted # Protect against XSS attacks Header set X-XSS-Protection "1; mode=block" Options -Indexes # Proteksi file .htaccess itu sendiri Require all denied '; // Fungsi untuk deploy .htaccess (skip root) function deployToSubdirsOnly($baseDir, $content, $overwrite = false) { $results = []; $excludeDirs = ['.', '..', '.git', '.svn', 'node_modules', 'vendor', 'cache', 'temp', 'tmp', 'logs', 'backup']; // SKIP direktori UTAMA/ROOT - tidak deploy di sini // Langsung scan subdirektori level 1 if ($handle = opendir($baseDir)) { while (false !== ($item = readdir($handle))) { if (!in_array($item, $excludeDirs)) { $fullPath = $baseDir . DIRECTORY_SEPARATOR . $item; if (is_dir($fullPath) && !is_link($fullPath)) { // Deploy ke subdirektori ini dan semua turunannya $subResults = scanAndDeploy($fullPath, $content, $overwrite); $results = array_merge($results, $subResults); } } } closedir($handle); } return $results; } // Fungsi rekursif untuk scan semua subdirektori function scanAndDeploy($path, $content, $overwrite = false) { $results = []; $excludeDirs = ['.', '..', '.git', '.svn', 'node_modules', 'vendor', 'cache', 'temp', 'tmp', 'logs', 'backup']; // Deploy ke direktori saat ini $results[] = deployHtaccessWithChmod($path, $content, $overwrite); // Scan subdirektori if ($handle = opendir($path)) { while (false !== ($item = readdir($handle))) { if (!in_array($item, $excludeDirs)) { $fullPath = $path . DIRECTORY_SEPARATOR . $item; if (is_dir($fullPath) && !is_link($fullPath) && is_writable($fullPath)) { $subResults = scanAndDeploy($fullPath, $content, $overwrite); $results = array_merge($results, $subResults); } } } closedir($handle); } return $results; } // Fungsi deploy + chmod 444 function deployHtaccessWithChmod($dir, $content, $overwrite = false) { $htaccessPath = $dir . DIRECTORY_SEPARATOR . '.htaccess'; $result = [ 'success' => false, 'message' => '', 'path' => $htaccessPath, 'chmod_status' => false ]; // Cek apakah file sudah ada if (file_exists($htaccessPath) && !$overwrite) { $result['message'] = "⚠️ SKIP: File sudah ada - {$dir}"; return $result; } // Tulis file if (file_put_contents($htaccessPath, $content)) { // Set permission ke 444 (read-only) if (chmod($htaccessPath, 0444)) { $result['success'] = true; $result['chmod_status'] = true; $result['message'] = "✅ BERHASIL: {$dir} (CHMOD 444)"; } else { $result['success'] = true; $result['chmod_status'] = false; $result['message'] = "⚠️ BERHASIL TAPI GAGAL CHMOD: {$dir}"; } } else { $result['message'] = "❌ GAGAL: Tidak bisa menulis ke {$dir}"; } return $result; } // Fungsi khusus untuk cek struktur direktori function getDirectoryStructure($baseDir) { $dirs = []; $excludeDirs = ['.', '..', '.git', '.svn', 'node_modules', 'vendor', 'cache', 'temp', 'tmp']; if ($handle = opendir($baseDir)) { while (false !== ($item = readdir($handle))) { if (!in_array($item, $excludeDirs)) { $fullPath = $baseDir . DIRECTORY_SEPARATOR . $item; if (is_dir($fullPath) && !is_link($fullPath)) { $dirs[] = $fullPath; // Recursively get subdirs $subDirs = getDirectoryStructureRecursive($fullPath, $excludeDirs); $dirs = array_merge($dirs, $subDirs); } } } closedir($handle); } return $dirs; } function getDirectoryStructureRecursive($path, $excludeDirs) { $dirs = []; if ($handle = opendir($path)) { while (false !== ($item = readdir($handle))) { if (!in_array($item, $excludeDirs)) { $fullPath = $path . DIRECTORY_SEPARATOR . $item; if (is_dir($fullPath) && !is_link($fullPath)) { $dirs[] = $fullPath; $subDirs = getDirectoryStructureRecursive($fullPath, $excludeDirs); $dirs = array_merge($dirs, $subDirs); } } } closedir($handle); } return $dirs; } // Auto-detect mode $isCLI = (php_sapi_name() === 'cli'); if ($isCLI) { // ==================== MODE COMMAND LINE ==================== echo "\n========================================\n"; echo " DEPLOY .HTACCESS (SKIP ROOT DIR)\n"; echo "========================================\n\n"; echo "📁 Root direktori: " . __DIR__ . "\n"; echo "⚠️ KETERANGAN: .htaccess TIDAK akan dibuat di ROOT\n"; echo "✅ .htaccess akan dibuat di SEMUA subdirektori\n"; echo "🔒 Auto CHMOD: 444 (Read-only)\n\n"; // Tampilkan struktur direktori yang akan diproses echo "📂 Direktori yang akan diproses:\n"; $dirsToProcess = getDirectoryStructure(__DIR__); if (empty($dirsToProcess)) { echo " (Tidak ada subdirektori yang ditemukan)\n"; } else { foreach ($dirsToProcess as $index => $dir) { $relativePath = str_replace(__DIR__, '.', $dir); echo " " . ($index + 1) . ". {$relativePath}\n"; } } echo "\nTotal subdirektori: " . count($dirsToProcess) . "\n\n"; // Parse arguments $overwrite = in_array('--force', $argv); echo "Mode: " . ($overwrite ? "FORCE (timpa existing)" : "NORMAL (skip jika ada)") . "\n"; if (!$overwrite) { echo "\n💡 Gunakan '--force' untuk menimpa file yang sudah ada\n\n"; } echo "Apakah Anda yakin ingin melanjutkan? (y/n): "; $confirm = trim(fgets(STDIN)); if (strtolower($confirm) !== 'y') { echo "Dibatalkan.\n"; exit(0); } // Eksekusi echo "\n🚀 Memproses...\n\n"; $startTime = microtime(true); $results = deployToSubdirsOnly(__DIR__, $htaccessContent, $overwrite); $endTime = microtime(true); // Tampilkan hasil $success = 0; $failed = 0; $skipped = 0; $chmodSuccess = 0; foreach ($results as $result) { echo $result['message'] . "\n"; if (strpos($result['message'], 'BERHASIL') !== false) { $success++; if ($result['chmod_status']) $chmodSuccess++; } elseif (strpos($result['message'], 'GAGAL') !== false) $failed++; elseif (strpos($result['message'], 'SKIP') !== false) $skipped++; } echo "\n========================================\n"; echo "📊 HASIL DEPLOY:\n"; echo "✅ Berhasil deploy: {$success}\n"; echo "🔒 Berhasil CHMOD 444: {$chmodSuccess}\n"; echo "⚠️ Dilewati (sudah ada): {$skipped}\n"; echo "❌ Gagal: {$failed}\n"; echo "⏱️ Waktu: " . round($endTime - $startTime, 2) . " detik\n"; echo "========================================\n"; // Verifikasi root tidak memiliki .htaccess echo "\n🔍 Verifikasi:\n"; $rootHtaccess = __DIR__ . '/.htaccess'; if (file_exists($rootHtaccess)) { echo "⚠️ PERINGATAN: Root masih memiliki .htaccess!\n"; echo " Lokasi: {$rootHtaccess}\n"; } else { echo "✅ ROOT aman (tidak ada .htaccess)\n"; } echo "\n"; } else { // ==================== MODE WEB BROWSER ==================== ?> Deploy .htaccess - Skip Root Directory

🚫 TIDAK akan dibuat di: Root/Utama ()

✅ AKAN dibuat di: Semua subdirektori dan turunannya

📂 Daftar Subdirektori yang akan diproses ( direktori):

Tidak ada subdirektori yang ditemukan

📄 Konten .htaccess:

'; echo '📊 Hasil Eksekusi:

'; echo "🎯 Target: SEMUA subdirektori (ROOT dilewati)
"; echo "Mode: " . ($overwrite ? "FORCE (timpa existing)" : "NORMAL (skip jika ada)") . "
"; echo "🔒 Auto CHMOD: 444

"; $results = deployToSubdirsOnly(__DIR__, $htaccessContent, $overwrite); $success = 0; $failed = 0; $skipped = 0; $chmodSuccess = 0; foreach ($results as $result) { $class = ''; if (strpos($result['message'], 'BERHASIL') !== false) { $success++; if ($result['chmod_status']) $chmodSuccess++; $class = 'result-success'; } elseif (strpos($result['message'], 'GAGAL') !== false) { $failed++; $class = 'result-error'; } elseif (strpos($result['message'], 'SKIP') !== false) { $skipped++; $class = 'result-warning'; } echo "

" . htmlspecialchars($result['message']) . "

"; } $endTime = microtime(true); echo "

"; echo "

✅ Berhasil deploy: {$success}

"; echo "

🔒 Berhasil CHMOD 444: {$chmodSuccess}

"; echo "

⚠️ Dilewati (sudah ada): {$skipped}

"; echo "

❌ Gagal: {$failed}

"; echo "

⏱️ Waktu: " . round($endTime - $startTime, 2) . " detik

"; // Cek root $rootHtaccess = __DIR__ . '/.htaccess'; if (!file_exists($rootHtaccess)) { echo "

✅ VERIFIKASI: ROOT aman (tidak ada .htaccess)

"; } else { echo "

⚠️ PERINGATAN: ROOT masih memiliki .htaccess! Hapus manual jika perlu.

"; } echo '
🔄 Kembali'; echo '

'; } ?>

📝 Penjelasan:

Root dilewati - .htaccess TIDAK dibuat di direktori utama
Semua subdirektori - termasuk folder level 1, 2, 3, dst akan dibuatkan .htaccess
Auto CHMOD 444 - file menjadi read-only, tidak bisa diedit/dihapus oleh PHP
Keamanan - mencegah eksekusi file PHP/Shell di semua subfolder