From f80f775dfbe12cf6b95bda38b73f5dc37327d7fa Mon Sep 17 00:00:00 2001
From: Adam Spragg <adam@spra.gg>
Date: Thu, 26 Jul 2018 15:09:50 +0100
Subject: Change the "private file" prefix from "@" to "_"

It has all the benefits previously mentioned in commit 2f547251, as well
as mirroring the common programming convention of using a "_" prefix to
identify private variables/functions

Hides files beginning with _ from mod_autoindex listings

As well as 404ing on files starting with "_", also 404 on files starting
with ".", as these are also private. Except for /.well-known/, because
that's... well known, and should be public.
---
 apache2.conf            |  9 +++++--
 html/@include.php       | 66 -------------------------------------------------
 html/_include.php       | 66 +++++++++++++++++++++++++++++++++++++++++++++++++
 html/about              |  2 +-
 html/contact            |  2 +-
 html/index.php          |  2 +-
 html/privacy            |  2 +-
 html/projects/index.php |  2 +-
 rawdog/page.template    |  2 +-
 9 files changed, 79 insertions(+), 74 deletions(-)
 delete mode 100644 html/@include.php
 create mode 100644 html/_include.php

diff --git a/apache2.conf b/apache2.conf
index a29a16d..030bac1 100644
--- a/apache2.conf
+++ b/apache2.conf
@@ -157,9 +157,14 @@
 	RewriteCond %{LA-U:REQUEST_FILENAME} !-d
 	RewriteRule !\. - [H=application/x-httpd-php]
 
-	# Disallow access to files/directories whose names begin with "@", returning a 404.
+	# Disallow access to files/directories whose names begin with "_" or "."
+	# (except for /.well-known/), returning a 404.
 	# This makes those files appear to not exist.
-	RewriteRule "/@" "-" [R=404,L]
+	RewriteCond "%{REQUEST_URI}" "!^/.well-known/"
+	RewriteRule "/[_.]" "-" [R=404,L]
+
+	# Do not list files beginning with an underscore in directory listings
+	IndexIgnore _??*
 
 	<Location /obs>
 		AuthType Basic
diff --git a/html/@include.php b/html/@include.php
deleted file mode 100644
index 7ce79b0..0000000
--- a/html/@include.php
+++ /dev/null
@@ -1,66 +0,0 @@
-<?php
-
-/// Indent all the lines in a string with a given number of tabs
-function indent($s, $n, $indent_first_line = false) {
-	$s = preg_replace("/^/m", str_repeat("\t", $n), $s);
-
-	if (!$indent_first_line) {
-		$s = substr($s, $n);
-	}
-
-	return $s;
-}
-
-/// Get the standard <head> elements for the site
-function site_head($title) {
-	return "<title>{$title}</title>\n"
-		. "<link rel=\"stylesheet\" href=\"/style/main.css\" type=\"text/css\" />\n"
-		. "<link rel=\"stylesheet\" href=\"/style/amber.css\" title=\"Amber\" type=\"text/css\" />\n"
-		. "<link rel=\"alternate stylesheet\" href=\"/style/green.css\" title=\"Green\" type=\"text/css\" />\n"
-		. "<!--\n"
-		. "	Hi there. Nice to see you here. Feel free to have a look around. Also check out the /about\n"
-		. "	page while you're at it. It's got a little bit more info about the site and the resources\n"
-		. "	used.\n"
-		. "-->\n";
-}
-
-/// Get a single top-level navigation item for the site
-function site_navitem($url, $text, $hide = false) {
-	$selected = $url == $_SERVER['REQUEST_URI'];
-
-	$classes = [];
-	if ($selected) {
-		$classes[] = "selected";
-	}
-	if ($hide && !$selected) {
-		$classes[] = "hidden";
-	}
-	$classes = count($classes) > 0 ? (" class=\"" . implode(" ", $classes) . "\"") : "";
-
-	return "<li{$classes}><a href=\"{$url}\">{$text}</a></li>";
-}
-
-/// Get the standard page header elements for the site
-function site_header($title) {
-	return "<h1 class=\"test\">{$title}</h1>\n"
-		. "<nav>\n"
-		. "\t<ul>\n"
-		. "\t\t" . site_navitem('/', 'Home') . "\n"
-		. "\t\t" . site_navitem('/projects', 'Projects') . "\n"
-		. "\t\t" . site_navitem('/blog', 'Blog') . "\n"
-		. "\t\t" . site_navitem('/privacy', 'Privacy') . "\n"
-		. "\t\t" . site_navitem('/contact', 'Contact') . "\n"
-		. "\t\t" . site_navitem('/about', 'About', true) . "\n"
-		. "\t</ul>\n"
-		. "</nav>\n";
-}
-
-/// Get the standard page footer elements for the site
-function site_footer() {
-	return "<hr />\n"
-		. "<p>Spragg Software Services Ltd is registered in England, No. 11248242.\n"
-		. "	Registered office: 82 Upper Hanover Street, Sheffield, S3 7RQ.\n"
-		. "	VAT reg No. 295343283.</p>\n";
-}
-
-?>
diff --git a/html/_include.php b/html/_include.php
new file mode 100644
index 0000000..7ce79b0
--- /dev/null
+++ b/html/_include.php
@@ -0,0 +1,66 @@
+<?php
+
+/// Indent all the lines in a string with a given number of tabs
+function indent($s, $n, $indent_first_line = false) {
+	$s = preg_replace("/^/m", str_repeat("\t", $n), $s);
+
+	if (!$indent_first_line) {
+		$s = substr($s, $n);
+	}
+
+	return $s;
+}
+
+/// Get the standard <head> elements for the site
+function site_head($title) {
+	return "<title>{$title}</title>\n"
+		. "<link rel=\"stylesheet\" href=\"/style/main.css\" type=\"text/css\" />\n"
+		. "<link rel=\"stylesheet\" href=\"/style/amber.css\" title=\"Amber\" type=\"text/css\" />\n"
+		. "<link rel=\"alternate stylesheet\" href=\"/style/green.css\" title=\"Green\" type=\"text/css\" />\n"
+		. "<!--\n"
+		. "	Hi there. Nice to see you here. Feel free to have a look around. Also check out the /about\n"
+		. "	page while you're at it. It's got a little bit more info about the site and the resources\n"
+		. "	used.\n"
+		. "-->\n";
+}
+
+/// Get a single top-level navigation item for the site
+function site_navitem($url, $text, $hide = false) {
+	$selected = $url == $_SERVER['REQUEST_URI'];
+
+	$classes = [];
+	if ($selected) {
+		$classes[] = "selected";
+	}
+	if ($hide && !$selected) {
+		$classes[] = "hidden";
+	}
+	$classes = count($classes) > 0 ? (" class=\"" . implode(" ", $classes) . "\"") : "";
+
+	return "<li{$classes}><a href=\"{$url}\">{$text}</a></li>";
+}
+
+/// Get the standard page header elements for the site
+function site_header($title) {
+	return "<h1 class=\"test\">{$title}</h1>\n"
+		. "<nav>\n"
+		. "\t<ul>\n"
+		. "\t\t" . site_navitem('/', 'Home') . "\n"
+		. "\t\t" . site_navitem('/projects', 'Projects') . "\n"
+		. "\t\t" . site_navitem('/blog', 'Blog') . "\n"
+		. "\t\t" . site_navitem('/privacy', 'Privacy') . "\n"
+		. "\t\t" . site_navitem('/contact', 'Contact') . "\n"
+		. "\t\t" . site_navitem('/about', 'About', true) . "\n"
+		. "\t</ul>\n"
+		. "</nav>\n";
+}
+
+/// Get the standard page footer elements for the site
+function site_footer() {
+	return "<hr />\n"
+		. "<p>Spragg Software Services Ltd is registered in England, No. 11248242.\n"
+		. "	Registered office: 82 Upper Hanover Street, Sheffield, S3 7RQ.\n"
+		. "	VAT reg No. 295343283.</p>\n";
+}
+
+?>
diff --git a/html/about b/html/about
index fa4d544..4092829 100644
--- a/html/about
+++ b/html/about
@@ -1,4 +1,4 @@
-<?php include '@include.php'; ?><!DOCTYPE html>
+<?php include '_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('About - Spragg Software Services Ltd.'), 2); ?>
diff --git a/html/contact b/html/contact
index 632113a..3938f87 100644
--- a/html/contact
+++ b/html/contact
@@ -1,4 +1,4 @@
-<?php include '@include.php'; ?><!DOCTYPE html>
+<?php include '_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('Contact - Spragg Software Services Ltd.'), 2); ?>
diff --git a/html/index.php b/html/index.php
index 29e0cfa..488d9ba 100644
--- a/html/index.php
+++ b/html/index.php
@@ -1,4 +1,4 @@
-<?php include '@include.php'; ?><!DOCTYPE html>
+<?php include '_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('Spragg Software Services Ltd.'), 2); ?>
diff --git a/html/privacy b/html/privacy
index 6d338fd..a04ebd6 100644
--- a/html/privacy
+++ b/html/privacy
@@ -1,4 +1,4 @@
-<?php include '@include.php'; ?><!DOCTYPE html>
+<?php include '_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('Privacy - Spragg Software Services Ltd.'), 2); ?>
diff --git a/html/projects/index.php b/html/projects/index.php
index b995ccf..f7e5f07 100644
--- a/html/projects/index.php
+++ b/html/projects/index.php
@@ -1,4 +1,4 @@
-<?php include '../@include.php'; ?><!DOCTYPE html>
+<?php include '../_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('Projects - Spragg Software Services Ltd.'), 2); ?>
diff --git a/rawdog/page.template b/rawdog/page.template
index 050f719..df5e817 100644
--- a/rawdog/page.template
+++ b/rawdog/page.template
@@ -1,4 +1,4 @@
-<?php include '@include.php'; ?><!DOCTYPE html>
+<?php include '_include.php'; ?><!DOCTYPE html>
 <html lang="en">
 	<head>
 		<?php echo indent(site_head('Blog - Spragg Software Services Ltd.'), 2); ?>
-- 
cgit v1.2.1