Options -Indexes

# Encoding
AddDefaultCharset UTF-8

# Protect sensitive folders
<FilesMatch "\.(sql|log|env|md)$">
  Order Allow,Deny
  Deny from all
</FilesMatch>

<IfModule mod_rewrite.c>
  RewriteEngine On
  RewriteBase /

  # Protect uploads directory from direct PHP execution
  RewriteRule ^uploads/.*\.php$ - [F,L]

  # Redirect direct access to includes/config
  RewriteRule ^(includes|config|database)/.*$ /index.php [R=302,L]
</IfModule>

# PHP settings
<IfModule mod_php.c>
  php_flag display_errors Off
  php_value upload_max_filesize 10M
  php_value post_max_size 12M
  php_value max_execution_time 60
</IfModule>
