# Hobbes OS/2 Archive — Apache / PHP 8.4

RewriteEngine On
RewriteBase /

# ── Pass HTTP Authorization header through to PHP ─────────────────────────────
# Required for wget/curl Basic Auth to work when PHP runs as CGI/FastCGI.
# CGIPassAuth is Apache 2.4.13+; the RewriteRule fallback covers older installs.
CGIPassAuth On
RewriteRule ^ - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [QSA,L]

Options -Indexes
AddDefaultCharset UTF-8

<FilesMatch "\.(json|ini)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order deny,allow
        Deny from all
    </IfModule>
</FilesMatch>

<FilesMatch "^config\.php$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order deny,allow
        Deny from all
    </IfModule>
</FilesMatch>

<IfModule mod_headers.c>
    FileETag None
    Header unset ETag
</IfModule>

<IfModule mod_php.c>
    php_value upload_max_filesize 200M
    php_value post_max_size 210M
    php_value memory_limit 128M
    php_value max_execution_time 300
    php_value max_input_time 300
</IfModule>
<IfModule mod_php8.c>
    php_value upload_max_filesize 200M
    php_value post_max_size 210M
    php_value memory_limit 128M
    php_value max_execution_time 300
    php_value max_input_time 300
</IfModule>