/SampleApplication/ColdBox3/.htaccess

 1RewriteEngine on
 2#RepeatLimit 0
 3
 4#SQL Injection Protection --Read More www.cybercrime.gov
 5#Please use these rules if below words does not conflict with your friendly-urls. You may modify accordingly. 
 6RewriteRule ^.*EXEC\(@.*$       /notfound.htm [L,F,NC]
 7RewriteRule ^.*CAST\(.*$        /notfound.htm [L,F,NC] 
 8RewriteRule ^.*DECLARE.*$       /notfound.htm [L,F,NC]  
 9RewriteRule ^.*DECLARE%20.*$    /notfound.htm [L,F,NC]
10RewriteRule ^.*NVARCHAR.*$      /notfound.htm [L,F,NC]  
11RewriteRule ^.*sp_password.*$   /notfound.htm [L,F,NC]
12RewriteRule ^.*%20xp_.*$        /notfound.htm [L,F,NC]
13
14#if this call related to CFIDE then just pass as it
15RewriteCond %{REQUEST_URI} ^/(.*(CFIDE|cfide|CFFormGateway|jrunscripts|railo-context|fckeditor)).*$
16RewriteRule ^(.*)$ - [NC,L]
17
18#dealing with flash / flex communication
19RewriteCond %{REQUEST_URI} ^/(.*(flashservices|flex2gateway|flex-remoting)).*$
20RewriteRule ^(.*)$ index.cfm/%{REQUEST_URI} [QSA,L] 
21
22#if image request then deliver as it is. otherwise not found message
23RewriteCond %{REQUEST_URI} \.(bmp|gif|jpe?g|png)$
24RewriteRule ^(.*)$ - [NC,L]
25
26#Ignore CSS or JS files  and this would be last rule --if the condition matched
27RewriteCond %{REQUEST_URI} \.(css|js)$
28RewriteRule ^(.*)$ - [NC,L]
29
30#Ignore txt/doc/pdf/xls files  and this would be last rule --if the condition matched
31RewriteCond %{REQUEST_URI} \.(txt|pdf|doc|xls|xml)$
32RewriteRule ^(.*)$ - [NC,L]
33
34#if there index.cfm or /blog/entry like pattern then forward request to index.cfm with query string
35RewriteRule ^$ index.cfm [QSA]
36RewriteCond %{REQUEST_FILENAME} !-f
37RewriteCond %{REQUEST_FILENAME} !-d
38RewriteRule ^(.*)$ index.cfm/%{REQUEST_URI} [QSA,L]