[Feature]: security.txt editable in opendxp backend

[plexmaniax]

Feature description

Similar to the GTM code and Google Site Verification, it would be nice if security.txt could also be maintained in the OpenDXP backend. This would give end customers the opportunity to maintain their data themselves without having to contact a developer.

[twin-elements]

Add this file to your assets and you will be able to edit it yourself in Pimcore.

[plexmaniax]

Hi @twin-elements

In your case you have to set a rewrite in the .htaccess, because the path for this file should be domain.tld/.well-known/security.txt. It's possible yet, but I would like to have some feature like expand the expire date automatically.

Contact: mailto:security@domain.tld
Expires: %expires%
Preferred-Languages: de, en

So you don't have to remember to update.

[twin-elements]

Hi @twin-elements

In your case you have to set a rewrite in the .htaccess, because the path for this file should be domain.tld/.well-known/security.txt. It's possible yet, but I would like to have some feature like expand the expire date automatically.

Contact: mailto:security@domain.tld Expires: %expires% Preferred-Languages: de, en

So you don't have to remember to update.

In that case, all you need to do is write a very simple module for OpenDXP/Pimcore on ExtJs, which loads the file where you need it.
I made a similar one for Favicon - https://github.com/in-square/pimcore-favicon-bundle. This one is for Pimcore, because we are only planning to migrate to OpenDXP. But the principle remains the same.