From f59b585153c973bf26dfee4b3bc9bddf19c683ec Mon Sep 17 00:00:00 2001
From: Julien Moutinho <julm+heureux-cyclage@autogeree.net>
Date: Mon, 20 Oct 2014 15:44:56 +0200
Subject: [PATCH] Correction : wordpress letabli.

---
 etc/nginx/site.d/cyclo-letabli/site.conf | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/etc/nginx/site.d/cyclo-letabli/site.conf b/etc/nginx/site.d/cyclo-letabli/site.conf
index 49db553..f0a2f14 100644
--- a/etc/nginx/site.d/cyclo-letabli/site.conf
+++ b/etc/nginx/site.d/cyclo-letabli/site.conf
@@ -3,8 +3,14 @@ server_name
  letabli.org;
 root /home/www/data/cyclo-letabli/www;
 
+rewrite /wp-admin$ $scheme://$host$uri/ permanent;
+	# Add trailing slash to */wp-admin requests.
+location = /wp-admin/ {
+	return 301 /wp-admin/index.php?$args;
+ }
 location / {
 	index index.html index.htm index.php;
+	try_files $uri $uri/ /index.php?$args;
  }
 location ~* ^.+\.(css|gif|html|ico|jpeg|js|jpg|png|txt|xml)$ {
 	access_log off;
@@ -44,6 +50,10 @@ location ~ \.php(|/.+)$ {
 	fastcgi_pass_header Cookie;
 	fastcgi_pass_header Set-Cookie;
 	fastcgi_split_path_info ^(.+\.php)(/.+)$;
+	if (!-f $document_root$fastcgi_script_name) {
+		# This is a robust solution for path info security issue and works with "cgi.fix_pathinfo = 1" in /etc/php.ini (default)
+		return 404;
+	 }
 	
 	fastcgi_pass unix:/run/php5/fpm/letabli;
  }
-- 
2.20.1