# Epic Travel & Expeditions - API .htaccess # Place this file in the /api/ directory RewriteEngine On RewriteBase /api/ # Route all requests to index.php RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^(.*)$ index.php/$1 [L,QSA] # Security Headers Header set X-Content-Type-Options "nosniff" Header set X-Frame-Options "SAMEORIGIN" Header set X-XSS-Protection "1; mode=block" # Protect sensitive files Order allow,deny Deny from all # Enable compression AddOutputFilterByType DEFLATE application/json text/plain # PHP Settings php_value upload_max_filesize 10M php_value post_max_size 10M php_value max_execution_time 300 php_value max_input_time 300