Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Read all json files from disk #2

Open
mathstuf opened this issue Jun 25, 2014 · 1 comment
Open

Read all json files from disk #2

mathstuf opened this issue Jun 25, 2014 · 1 comment

Comments

@mathstuf
Copy link

Currently, reading json files seems to go through the web server when they could (and, IMO, should) be requested from the disk. Forcing them to come from the web server means that files such as serviceCreds.json can be read by anyone.
@rgillet311
Copy link
Contributor

We are discussing moving all sensitive data out of the documentRoot or
possibly making it private with a .htaccess file. Thank you for bringing
this to our attention

On Wed, Jun 25, 2014 at 12:27 AM, Ben Boeckel [email protected]
wrote:

Currently, reading json files seems to go through the web server when they
could (and, IMO, should) be requested from the disk. Forcing them to come
from the web server means that files such as serviceCreds.json can be
read by anyone.


Reply to this email directly or view it on GitHub
#2.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mathstuf @rgillet311