# Hobbes OS/2 Archive — Apache / PHP 8.x

RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]

Options -Indexes
AddDefaultCharset UTF-8

# Block direct access to physical .json and .ini files on disk.
# Virtual .json routes (catalog.json, *.zip.json sidecars) are unaffected because
# they rewrite to index.php before this directive applies.
<FilesMatch "\.(json|ini)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order deny,allow
        Deny from all
    </IfModule>
</FilesMatch>

<FilesMatch "^config\.php$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order deny,allow
        Deny from all
    </IfModule>
</FilesMatch>

<IfModule mod_headers.c>
    FileETag None
    Header unset ETag
</IfModule>

<IfModule mod_php.c>
    php_value upload_max_filesize 200M
    php_value post_max_size 210M
    php_value memory_limit 128M
    php_value max_execution_time 300
    php_value max_input_time 300
</IfModule>
<IfModule mod_php8.c>
    php_value upload_max_filesize 200M
    php_value post_max_size 210M
    php_value memory_limit 128M
    php_value max_execution_time 300
    php_value max_input_time 300
</IfModule>
