# =====================================================================
# .htaccess — Tetapan Apache (shared hosting)
# =====================================================================

# Halaman utama
DirectoryIndex index.php

# Lindungi fail konfigurasi daripada diakses terus melalui pelayar
<FilesMatch "^(config\.php|config\.sample\.php)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order allow,deny
        Deny from all
    </IfModule>
</FilesMatch>

# Halang akses terus ke fail .sql, .md dan .log
<FilesMatch "\.(sql|md|log)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order allow,deny
        Deny from all
    </IfModule>
</FilesMatch>
