# так безопаснее
php_value register_globals 0
# убираем экранирование кавычек
php_value magic_quotes_gpc 0
# дописываем сессию к URL
php_value session.use_trans_sid 1
php_value session.cookie_lifetime 0
# кодировка по-умолчанию
AddDefaultCharset UTF-8
DirectoryIndex index.php
Options -Indexes
php_value post_max_size 100M
php_value upload_max_filesize 100M
php_flag allow_url_fopen 1
<IfModule mod_gzip.c>
mod_gzip_on Yes
mod_gzip_dechunk Yes
mod_gzip_item_include file .(html?|txt|css|js|php|pl)$
mod_gzip_item_include handler ^cgi-script$
mod_gzip_item_include mime ^text.*
mod_gzip_item_include mime ^application/x-javascript.*
mod_gzip_item_exclude mime ^image.*
mod_gzip_item_exclude rspheader ^Content-Encoding:.*gzip.*
</IfModule>

# RewriteEngine
<IfModule mod_rewrite.c>
RewriteEngine On

RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^id([0-9]+)/([0-9_a-z]*)?$ profile.php?id=$1 [L]
RewriteRule ^id([0-9]+)/?$ profile.php?id=$1 [L]
RewriteRule ^profile/?$ profile.php [L]
RewriteRule ^garage?$ garage.php [L]
RewriteRule ^station?$ station.php [L]
RewriteRule ^garage_([0-9_a-z]*)?$ garage.php?mode=$1 [L,QSA]
RewriteRule ^upgrade?$ upgrade.php [L]
RewriteRule ^upgrade_([0-9_a-z]*)?$ upgrade.php?mode=$1 [L,QSA]

RewriteRule ^upgrade([0-9]+)/?$ upgrade.php?id=$1 [L]

RewriteRule ^mail([0-9]+)/?$ /messages/mail.php?id=$1 [L]
RewriteRule ^mail/?$ /messages/mail.php [L]

RewriteRule ^entrance/?$ login.php [L]
RewriteRule ^enter/?$ aut.php [L]
RewriteRule ^check/?$ reg.php [L]
RewriteRule ^checking/?$ verification.php [L]

RewriteRule ^who_playing?$ who_online.php [L]
RewriteRule ^black_market?$ bmarket.php [L]
RewriteRule ^glove_box?$ glove_box.php [L]

RewriteRule ^avatar/?$ avatar.php [L]
RewriteRule ^bank/?$ bank.php [L]
RewriteRule ^repair/?$ sto.php [L]
RewriteRule ^automarket/?$ automarket.php [L]
RewriteRule ^automarket/([0-9_a-z]*)?$ automarket.php?mode=$1 [L,QSA]
RewriteRule ^automarket/sell/select/?$ automarket.php?mode=sell&select=$1 [L,QSA]
RewriteRule ^exit/?$ exit.php [L]
RewriteRule ^settings/?$ settings.php [L]
RewriteRule ^race([0-9_a-z]*)?$ gonki.php?zaezd=$1 [L,QSA]

RewriteRule ^admin-area/?$ /402-adminka/index.php [L]
RewriteRule ^admin-area/players?$ /402-adminka/players.php [L]
RewriteRule ^admin-area/news?$ /402-adminka/news.php [L]
RewriteRule ^admin-area/support?$ /402-adminka/support.php [L]
RewriteRule ^admin-area/championship?$ /402-adminka/championship.php [L]
RewriteRule ^admin-area/spares?$ /402-adminka/spares.php [L]

RewriteRule ^posts?$ /messages/index.php [L]
RewriteRule ^dialogs?$ /messages/usermess.php [L]
RewriteRule ^newsgame?$ /messages/newsgame.php [L]

RewriteRule ^chatik$ /chat/shodka.php [L]
RewriteRule ^tyro$ /chat/tyro.php [L]
RewriteRule ^ads$ /chat/ads.php [L]
RewriteRule ^notebook$ notebook.php [L]
RewriteRule ^notebook([0-9]+)/?$ notebook.php?id=$1 [L]


RewriteRule ^verb([0-9]+)/?$ verb.php?id=$1 [L]
RewriteRule ^verb?$ verb.php [L]
RewriteRule ^ban?$ ban.php [L]
RewriteRule ^about?$ about.php [L]
RewriteRule ^support?$ support.php [L]
RewriteRule ^tasks?$ tasks.php [L]
RewriteRule ^communication?$ communication.php [L]
RewriteRule ^progress?$ progress.php [L]
RewriteRule ^kit?$ kit.php [L]
RewriteRule ^questionary?$ questionary.php [L]
RewriteRule ^questionary([0-9]+)/?$ questionary.php?id=$1 [L]



RewriteRule ^track$ /track/index.php [L]
RewriteRule ^drive_visiting?$ /track/visiting.php [L]
RewriteRule ^drive_locative?$ /track/locative.php [L]
RewriteRule ^result_race?$ /track/result_race.php [L]
RewriteRule ^detalis_race?$ /track/detalis_race.php [L]
RewriteRule ^personal_trainer?$ /track/personal_trainer.php [L]

RewriteRule ^rate_day$ /rate/day.php [L]
RewriteRule ^rate_xp$ /rate/xp.php [L]
RewriteRule ^rate_lv$ /rate/lv.php [L]
RewriteRule ^rate_time$ /rate/time.php [L]
RewriteRule ^rate_highscores$ /rate/highscores.php [L]

RewriteRule ^championship$ /championship/index.php [L]
RewriteRule ^championship([0-9]+)/?$ /championship/info.php?id=$1 [L]

RewriteRule ^club$ /clubs/index.php [L]
RewriteRule ^club_create$ /clubs/create.php [L]
RewriteRule ^clubs_$ /clubs/clubs.php [L]
RewriteRule ^club_bid$ /clubs/bid.php [L]
RewriteRule ^club_about$ /clubs/about.php [L]
RewriteRule ^club_riders$ /clubs/riders.php [L]
RewriteRule ^club_boot$ /clubs/boot.php [L]
RewriteRule ^club_obshchak$ /clubs/obshchak.php [L]
RewriteRule ^club_chat$ /clubs/chat.php [L]
RewriteRule ^club_garage$ /clubs/garage.php [L]
RewriteRule ^club_join$ /clubs/join.php [L]
RewriteRule ^club_edit$ /clubs/edit.php [L]
RewriteRule ^club_avatar$ /clubs/avatar.php [L]
RewriteRule ^club_verb$ /clubs/verb.php [L]
RewriteRule ^club_verb([0-9]+)/?$ /clubs/verb.php?id=$1 [L]
RewriteRule ^club_sto([0-9]+)/?$ /clubs/sto.php?id=$1 [L]


RewriteRule ^clubs_([0-9]+)/?$ clubs/clubs.php?id=$1 [L]
RewriteRule ^club_about_([0-9]+)/?$ clubs/about.php?id=$1 [L]
RewriteRule ^club_join([0-9]+)/?$ clubs/join.php?id=$1 [L]
RewriteRule ^clubs_([0-9]+)/bid([0-9]+)/?$ clubs/clubs.php?id=$1&bid=$1 [L]
RewriteRule ^clubs_([0-9]+)/cancel_bid([0-9]+)/?$ clubs/clubs.php?id=$1&cancel_bid=$1 [L]

RewriteRule ^pass_soc$ /loginAPI/pass.php [L]
RewriteRule ^login_soc$ /loginAPI/login.php [L]
RewriteRule ^email_soc$ /loginAPI/email.php [L]

RewriteRule ^workmanship$ workmanship.php [L]

</IfModule>

# переопределяем страницы ошибок
ErrorDocument 400 /err.php?err=400
ErrorDocument 401 /err.php?err=401
ErrorDocument 402 /err.php?err=402
ErrorDocument 403 /err.php?err=403
ErrorDocument 404 /err.php?err=404
ErrorDocument 500 /err.php?err=500
ErrorDocument 502 /err.php?err=502
#Защита от XSS
Options +FollowSymLinks
RewriteEngine On
RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
RewriteRule ^(.*)$ index.php [F,L]
>
RewriteEngine on
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME}\.php -f
RewriteRule ^(.*)$ $1.php
