While going through the guide, I stumbled upon this tip:
Yii does not need to be installed under a Web-accessible directory. A Yii application has one entry script which is usually the only file that needs to be exposed to Web users. Other PHP scripts, including those from Yii, should be protected from Web access; otherwise they might be exploited by hackers.
From my interpretation, this means that besides the entry script php file, all other files would not have to necessarily be in the wwwroot folder? If this is the case, can somebody please provide me with a quick step-by-step guide on how to set that up? So for example, let’s say currently I have:
[indent]/var/www/html/[/indent]
[indent][indent]framework/ <--default yii framework folder[/indent][/indent]
[indent][indent]mysite/ <--my website folder[/indent][/indent]
[indent][indent][indent]index.php <--yii entry script[/indent][/indent][/indent]
[indent][indent][indent]css/, images/, protected/, ...[/indent][/indent][/indent]
What steps would I need to take so that I can end up with something like this:
[indent]/var/www/html/[/indent]
[indent][indent]index.php <–yii entry script[/indent][/indent]
[indent]/var/www/xxx/[/indent]
[indent][indent]framework/ <–default yii framework folder[/indent][/indent]
[indent][indent]mysite/ <–my website folder[/indent][/indent]
As I mentioned before, this is how I am interpreting the Yii Tip that was mentioned in the guide. Please correct me if I’m wrong in my understanding. You can see the tip here: http://www.yiiframework.com/doc/guide/1.1/en/quickstart.installation
Thanks in advance!