Update API .htaccess and README

2025-10-03 16:20:58 +08:00 · 2025-07-09 03:42:09 -04:00 · 2025-07-09 03:42:09 -04:00 · 3dbb1c0fa5
commit 3dbb1c0fa5
parent 54d2eb927d
2 changed files with 5 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -98,7 +98,7 @@ The v-wordpress-plugin-updater project is designed to streamline the management
 | ---                                        | ---                                                                                                                                                                                                                                                                                                                                                                |
 | [index.php](update-api/public/index.php)   | Serves as the main entry point for the Update APIs web interface, providing a dashboard for managing WordPress hosts, plugins, themes, and viewing logs. Initializes sessions and includes necessary configurations and libraries, facilitating an admin interface with essential resources for a responsive and interactive user experience.                      |
 | /api (routed via `index.php`)              | Unified API endpoint handled by `ApiController`, validating domains and keys while enforcing IP blacklist rules. Delivers update packages when newer versions are available. |
-| [.htaccess](update-api/public/.htaccess)   | Enhances URL routing by managing redirects and internal rewrites, ensuring clear and organized access to key sections like home, plupdate, thupdate, and logs. This optimization streamlines external requests and maintains seamless internal navigation within the update-api component of the repository.                                                       |
+| [.htaccess](update-api/public/.htaccess)   | Manages redirects for `/login.php` and `/api.php` while routing all requests through `index.php`. This ensures clean URLs such as `/login` and `/api` and provides optimized access to key sections like home, plupdate, thupdate, and logs. |
 | /login (handled by `index.php`)            | Provides an admin login interface for the Update API, enhancing security and access control. Integrates with configuration, authentication, and web application firewall libraries to facilitate validation and protection mechanisms within the broader WordPress plugin update ecosystem. Presents a user-friendly login form to manage API updates effectively. |
 | [robots.txt](update-api/public/robots.txt) | Regulates web crawler access to the update-api directory with a specified delay, optimizing server load and ensuring the smooth operation of the plugin updater functionality within the repositorys architecture.                                                                                                                                                  |

--- a/update-api/public/.htaccess
+++ b/update-api/public/.htaccess
@ -4,6 +4,10 @@ RewriteEngine On
 RewriteCond %{THE_REQUEST} \s/login\.php\s [NC]
 RewriteRule ^login\.php$ /login [R=301,L]

+# External redirect /api.php → /api
+RewriteCond %{THE_REQUEST} \s/api\.php\s [NC]
+RewriteRule ^api\.php$ /api [R=301,L]
+
 # Redirect /index.php to root
 RewriteCond %{THE_REQUEST} \s/index\.php\s [NC]
 RewriteRule ^index\.php$ / [R=301,L]