|
1 | 1 | <!-- |
2 | | - CDN buckets: |
3 | | -
|
4 | | - - c714015.r15.cf2.rackcdn.com |
5 | | -
|
6 | | - - contextlysitescripts.contextly.com |
7 | | -
|
8 | | -
|
9 | | - Problematic subdomains: |
10 | | -
|
11 | | - - contextlysitescripts ¹ |
12 | | - - press ² |
13 | | - - www ³ |
14 | | -
|
15 | | - ¹ akamai |
16 | | - ² Works; mismatched, CN: *.heroku.com |
17 | | - ³ Mismatched, CN: rest.contextly.com |
18 | | -
|
19 | | -
|
20 | | - Fully covered subdomains: |
21 | | -
|
22 | | - - app |
23 | | - - contextlysitescripts (-> c714015.ssl.cf2.rackcdn.com) |
24 | | - - dev |
25 | | - - rest |
26 | | -
|
27 | | -
|
28 | | - These altnames don't exist: |
29 | | -
|
30 | | - - www.rest.contextly.com |
31 | | -
|
32 | | -
|
33 | | - Mixed content: |
34 | | -
|
35 | | - - Frame on (www.) from docs.google.com ¹ |
36 | | -
|
37 | | - - css, on (www.) from: |
38 | | -
|
39 | | - - contextlysitescripts ¹ |
40 | | - - contextly2.wpengine.com ¹ |
41 | | -
|
42 | | - - Images from contextly2.wpengine.com ¹ |
43 | | -
|
44 | | - - Ad from www.yolink.com ² |
45 | | -
|
46 | | - ¹ Secured by us |
47 | | - ² Not secured by us <= expired & mismatched |
48 | | -
|
| 2 | + Mismatch: |
| 3 | + api.contextly.com |
| 4 | + blog.contextly.com |
| 5 | + press.contextly.com |
| 6 | + www.rest.contextly.com |
49 | 7 | --> |
50 | | -<ruleset name="Contextly.com (partial)"> |
51 | | - |
| 8 | +<ruleset name="Contextly.com"> |
52 | 9 | <target host="contextly.com" /> |
53 | | - <target host="*.contextly.com" /> |
54 | | - <!-- |
55 | | - Avoid false/broken MCB: |
56 | | - --> |
57 | | - <exclusion pattern="^http://(?:www\.)?contextly\.com/+blog" /> |
58 | | - |
59 | | - |
60 | | - <!-- Not secured by server: |
61 | | - --> |
62 | | - <!--securecookie host="^(dev\.)?contextly\.com$" name="^PHPSESSID$" /--> |
| 10 | + <target host="www.contextly.com" /> |
| 11 | + <target host="app.contextly.com" /> |
| 12 | + <target host="contextlysitescripts.contextly.com" /> |
| 13 | + <target host="dev.contextly.com" /> |
| 14 | + <target host="rest.contextly.com" /> |
| 15 | + <test url="http://rest.contextly.com/robots.txt" /> |
| 16 | + <target host="support.contextly.com" /> |
63 | 17 |
|
64 | | - <securecookie host="^dev\.contextly\.com$" name=".+" /> |
65 | | - |
66 | | - |
67 | | - <rule from="^http://(?:((?:app|dev|rest)\.)|www\.)?contextly\.com/" |
68 | | - to="https://$1contextly.com/" /> |
| 18 | + <securecookie host=".+" name=".+" /> |
69 | 19 |
|
70 | 20 | <rule from="^http://contextlysitescripts\.contextly\.com/" |
71 | 21 | to="https://c714015.ssl.cf2.rackcdn.com/" /> |
| 22 | + <test url="http://contextlysitescripts.contextly.com/kit/assets/2.4/widgets--page-view.css" /> |
72 | 23 |
|
73 | | - <!-- For protocol-relative links: |
74 | | - --> |
75 | | - <rule from="^https://contextly\.com/blog" |
76 | | - to="http://contextly.com/blog" |
77 | | - downgrade="1" /> |
78 | | - |
| 24 | + <rule from="^http:" to="https:" /> |
79 | 25 | </ruleset> |
0 commit comments