# Protect sensitive files
<Files ".env">
    Order allow,deny
    Deny from all
</Files>

<Files ".env.*">
    Order allow,deny
    Deny from all
</Files>

<Files "composer.json">
    Order allow,deny
    Deny from all
</Files>

<Files "composer.lock">
    Order allow,deny
    Deny from all
</Files>

<Files "package.json">
    Order allow,deny
    Deny from all
</Files>

<Files "package-lock.json">
    Order allow,deny
    Deny from all
</Files>

<Files "artisan">
    Order allow,deny
    Deny from all
</Files>

# Protect directories
<IfModule mod_rewrite.c>
    RewriteEngine On
    
    # Block access to storage directory
    RewriteRule ^storage/.*$ - [F,L]
    
    # Block access to bootstrap/cache
    RewriteRule ^bootstrap/cache/.*$ - [F,L]
    
    # Block access to vendor directory
    RewriteRule ^vendor/.*$ - [F,L]
    
    # Block access to database directory
    RewriteRule ^database/.*$ - [F,L]
    
    # Block access to config directory
    RewriteRule ^config/.*$ - [F,L]
    
    # Redirect everything to public folder
    RewriteCond %{REQUEST_URI} !^/public/
    RewriteRule ^(.*)$ public/$1 [L]
</IfModule>