wunderio
diff --git a/‎README.md‎
Lines changed: 6 additions & 1 deletion b/‎README.md‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎composer.json‎
Lines changed: 4 additions & 1 deletion b/‎composer.json‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎config/local/.htaccess‎
Lines changed: 24 additions & 0 deletions b/‎config/local/.htaccess‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎config/sync/announcements_feed.settings.yml‎ renamed to ‎config/local/announcements_feed.settings.yml‎ b/‎config/sync/announcements_feed.settings.yml‎ renamed to ‎config/local/announcements_feed.settings.yml‎
diff --git a/‎config/sync/dblog.settings.yml‎ renamed to ‎config/local/dblog.settings.yml‎ b/‎config/sync/dblog.settings.yml‎ renamed to ‎config/local/dblog.settings.yml‎
diff --git a/‎config/local/stage_file_proxy.settings.yml‎
Lines changed: 9 additions & 0 deletions b/‎config/local/stage_file_proxy.settings.yml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎config/sync/views.view.watchdog.yml‎ renamed to ‎config/local/views.view.watchdog.yml‎ b/‎config/sync/views.view.watchdog.yml‎ renamed to ‎config/local/views.view.watchdog.yml‎
diff --git a/‎config/main/.htaccess‎
Lines changed: 24 additions & 0 deletions b/‎config/main/.htaccess‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎config/main/stage_file_proxy.settings.yml‎
Lines changed: 9 additions & 0 deletions b/‎config/main/stage_file_proxy.settings.yml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎config/production/.htaccess‎
Lines changed: 24 additions & 0 deletions b/‎config/production/.htaccess‎
Lines changed: 24 additions & 0 deletions
@@ -20,6 +20,8 @@ This project is a tailored fork of the popular [drupal-composer template](https:
      - For DDEV: Update project settings in `.ddev/config.yaml`
      - For Lando: Update project settings in `.lando.yml`
    - Update project name in `scripts/syncdb.sh` for database synchronization
+   - Adjust `web/sites/default/settings.php` settings (`stage_file_proxy` etc)
+   - Adjust `config_split` settings for silta (default), production, main, local environments
 
 3. **Set up CircleCI**
    - Log in to [CircleCI](https://app.circleci.com/) using your GitHub account.
@@ -88,8 +90,11 @@ This project supports two local development environments: DDEV (preferred) and L
   # See `scripts/syncdb.sh` for options
   ddev syncdb
 
+  # Apply configuration changes
+  ddev drush deploy
+
   # Get a one-time login link for admin access
-  drush uli
+  ddev drush uli
   ```
 
 Note: All commands in the DDEV section should be run within the DDEV environment using `ddev` prefix (e.g., `ddev drush uli`), or by using `ddev ssh` to access the container shell first.
 
@@ -19,15 +19,18 @@
         "composer/installers": "^2.3",
         "cweagans/composer-patches": "^1.7",
         "drupal/admin_toolbar": "^3.5",
+        "drupal/config_split": "^2.0",
         "drupal/core-composer-scaffold": "^11.1",
         "drupal/core-recommended": "^11.1",
         "drupal/monolog": "^3.0",
         "drupal/purge": "^3.6",
         "drupal/simplei": "^3.0",
+        "drupal/stage_file_proxy": "^3.1",
         "drupal/varnish_purge": "^2.3",
         "drush/drush": "^13.3",
         "vlucas/phpdotenv": "^5.6",
-        "wunderio/drupal-ping": "^2.5"
+        "wunderio/drupal-ping": "^2.5",
+        "wunderio/updates_log": "^2.5"
     },
     "require-dev": {
         "drupal/core-dev": "^11.1",
 
@@ -0,0 +1,24 @@
+# Deny all requests from Apache 2.4+.
+<IfModule mod_authz_core.c>
+  Require all denied
+</IfModule>
+
+# Deny all requests from Apache 2.0-2.2.
+<IfModule !mod_authz_core.c>
+  Deny from all
+</IfModule>
+
+# Turn off all options we don't need.
+Options -Indexes -ExecCGI -Includes -MultiViews
+
+# Set the catch-all handler to prevent scripts from being executed.
+SetHandler Drupal_Security_Do_Not_Remove_See_SA_2006_006
+<Files *>
+  # Override the handler again if we're run later in the evaluation list.
+  SetHandler Drupal_Security_Do_Not_Remove_See_SA_2013_003
+</Files>
+
+# If we know how to do it safely, disable the PHP engine entirely.
+<IfModule mod_php.c>
+  php_flag engine off
+</IfModule>
@@ -0,0 +1,9 @@
+_core:
+  default_config_hash: LqXuXXQCTd1NWw7dGLef0PCi3_aEEWQuogAblo4hHaE
+hotlink: false
+origin: ''
+origin_dir: ''
+use_imagecache_root: true
+proxy_headers: ''
+verify: true
+excluded_extensions: ''
@@ -0,0 +1,24 @@
+# Deny all requests from Apache 2.4+.
+<IfModule mod_authz_core.c>
+  Require all denied
+</IfModule>
+
+# Deny all requests from Apache 2.0-2.2.
+<IfModule !mod_authz_core.c>
+  Deny from all
+</IfModule>
+
+# Turn off all options we don't need.
+Options -Indexes -ExecCGI -Includes -MultiViews
+
+# Set the catch-all handler to prevent scripts from being executed.
+SetHandler Drupal_Security_Do_Not_Remove_See_SA_2006_006
+<Files *>
+  # Override the handler again if we're run later in the evaluation list.
+  SetHandler Drupal_Security_Do_Not_Remove_See_SA_2013_003
+</Files>
+
+# If we know how to do it safely, disable the PHP engine entirely.
+<IfModule mod_php.c>
+  php_flag engine off
+</IfModule>
@@ -0,0 +1,9 @@
+_core:
+  default_config_hash: LqXuXXQCTd1NWw7dGLef0PCi3_aEEWQuogAblo4hHaE
+hotlink: false
+origin: ''
+origin_dir: ''
+use_imagecache_root: true
+proxy_headers: ''
+verify: true
+excluded_extensions: ''
@@ -0,0 +1,24 @@
+# Deny all requests from Apache 2.4+.
+<IfModule mod_authz_core.c>
+  Require all denied
+</IfModule>
+
+# Deny all requests from Apache 2.0-2.2.
+<IfModule !mod_authz_core.c>
+  Deny from all
+</IfModule>
+
+# Turn off all options we don't need.
+Options -Indexes -ExecCGI -Includes -MultiViews
+
+# Set the catch-all handler to prevent scripts from being executed.
+SetHandler Drupal_Security_Do_Not_Remove_See_SA_2006_006
+<Files *>
+  # Override the handler again if we're run later in the evaluation list.
+  SetHandler Drupal_Security_Do_Not_Remove_See_SA_2013_003
+</Files>
+
+# If we know how to do it safely, disable the PHP engine entirely.
+<IfModule mod_php.c>
+  php_flag engine off
+</IfModule>