From f458c3a4ae4db5956ede4d705a3d8aee28d79a25 Mon Sep 17 00:00:00 2001
From: Dominik Ulrich <czshaimagal@gmail.com>
Date: Wed, 1 Nov 2023 14:46:18 +0100
Subject: [PATCH 1/2] Do not allow dangerous files in js folder

---
 js/.htaccess | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/js/.htaccess b/js/.htaccess
index 3819b90a129c7..c6274695ba648 100755
--- a/js/.htaccess
+++ b/js/.htaccess
@@ -7,3 +7,25 @@
 </IfModule>
 
 
+# Apache 2.2
+<IfModule !mod_authz_core.c>
+    Order deny,allow
+    Deny from all
+    <Files ~ "(?i)^.*\.(css|js|gif|png)$">
+        Allow from all
+    </Files>
+    <Files ~ "(?i)^.*(jquery\.noConflict\.php|retro-compat\.js\.php)$">
+        Allow from all
+    </Files>
+</IfModule>
+
+# Apache 2.4
+<IfModule mod_authz_core.c>
+    Require all denied
+    <Files ~ "(?i)^.*\.(css|js|gif|png)$">
+        Require all granted
+    </Files>
+    <Files ~ "(?i)^.*(jquery\.noConflict\.php|retro-compat\.js\.php)$">
+        Require all granted
+    </Files>
+</IfModule>

From 909dfdbd501e238d79ba5a2cc68e11f3b9e70eec Mon Sep 17 00:00:00 2001
From: Dominik Ulrich <czshaimagal@gmail.com>
Date: Wed, 1 Nov 2023 23:34:09 +0100
Subject: [PATCH 2/2] Add more allowed extensions

---
 js/.htaccess | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/js/.htaccess b/js/.htaccess
index c6274695ba648..d12f09c417ad4 100755
--- a/js/.htaccess
+++ b/js/.htaccess
@@ -11,7 +11,7 @@
 <IfModule !mod_authz_core.c>
     Order deny,allow
     Deny from all
-    <Files ~ "(?i)^.*\.(css|js|gif|png)$">
+    <Files ~ "(?i)^.*\.(css|js|gif|png|jpg|svg|html|map|eot|ttf|woff)$">
         Allow from all
     </Files>
     <Files ~ "(?i)^.*(jquery\.noConflict\.php|retro-compat\.js\.php)$">
@@ -22,7 +22,7 @@
 # Apache 2.4
 <IfModule mod_authz_core.c>
     Require all denied
-    <Files ~ "(?i)^.*\.(css|js|gif|png)$">
+    <Files ~ "(?i)^.*\.(css|js|gif|png|jpg|svg|html|map|eot|ttf|woff)$">
         Require all granted
     </Files>
     <Files ~ "(?i)^.*(jquery\.noConflict\.php|retro-compat\.js\.php)$">