Skip to content
/ sw-secure-deploy Public

Security configs and deployment tips for a secure Shopware 6 setup.

License

AGPL-3.0 license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

7underlines/sw-secure-deploy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.github
.github
 
 
.htaccess
.htaccess
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
cron.txt
cron.txt
 
 
robots.txt
robots.txt
 
 
z-monolog.yaml
z-monolog.yaml
 
 

Repository files navigation

SW Secure Deploy

Security configs and deployment tips for a secure Shopware 6 setup.

Links

Usage

All codes should be inserted right at the beginning of the files.

  • Add code from .htaccess to your .htaccess file.
  • Add code from robots.txt to your robots.txt file.
  • Create file config/packages/prod/z-monolog.yaml and add code from z-monolog.yaml.
  • Execute bin/console cache:clear to apply the changes.
  • Schedule periodically execution of bin/console cache:clear (see cron.txt).

Recommendations

  • Update Shopware and apps/themes
  • Install/Update the Shopware Security Plugin
  • Enable Two Factor Authentication
  • Verify production mode is enabled
  • Verify backups are working
  • Verify Shop Status (FroshTools)

Advanced

  • Use a creative admin user name
  • Setup stricter rate limits (shopware.yml)
  • Install extensions as composer packages

About

Security configs and deployment tips for a secure Shopware 6 setup.

Topics

security deployment best-practices shopware web-security htaccess shopware6 secure-configuration shopware-security

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository