# Disable directory listing
Options -Indexes

# Basic security headers
<IfModule mod_headers.c>
  Header set X-Content-Type-Options "nosniff"
  Header set X-Frame-Options "DENY"
  Header set X-XSS-Protection "1; mode=block"
</IfModule>

# Redirect all .php requests directly (optional)
DirectoryIndex login.php

# Prevent access to JSON backups or .json-edit files
<FilesMatch "\.(json|json\.bak)$">
  Require all granted
</FilesMatch>

# Deny access to sensitive files (if any)
<FilesMatch "(^\.ht|config\.php|composer\.json)">
  Require all denied
</FilesMatch>

# php -- BEGIN cPanel-generated handler, do not edit
# Set the “ea-php81” package as the default “PHP” programming language.
<IfModule mime_module>
  AddHandler application/x-httpd-ea-php81 .php .php8 .phtml
</IfModule>
# php -- END cPanel-generated handler, do not edit