# Asset Tracker — Apache configuration
# Deny access to sensitive files

<FilesMatch "\.(sql|md|example)$">
    Require all denied
</FilesMatch>

<Files "config.php">
    Require all denied
</Files>

# Protect includes directory
<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteRule ^includes/ - [F,L]
</IfModule>

# PHP settings
<IfModule mod_php.c>
    php_flag display_errors off
    php_flag log_errors on
</IfModule>
