I have an application, which uses a domain name of
app.domain.io
it hosts the the default application with all the default routes and stuff
Also I have configured urlManager to handle a dynamic subdomain
***.domain.com
The requests to this domain is handled by the same application (i.e. frontend/web) but configured with urlManager rules
Rules:
'protocol://<client>.domain.com/r/<token>' => 'public/response' // Handles requests to ****.domain.com
'<controller>/<action>' => '<controller>/<action>' // Handles the default application app.domain.io
So the problem is this, if a user removes the "r/<token>" part from the URL, then the request is handled as it was sent to
app.domain.io
and the "site/login" page is opened (because login is required for the application)
But in fact a 404 error should be shown.
This can be achieved by using $enableStrictParsing, but by enabling it, all other routes of the application stop working (i.e. default route site/index, module/controller/action , etc)