# Rutare: orice cerere care NU e un fisier/folder real merge la index.php.
# Fisierele reale (admin/*.html, cron.php) sunt servite direct.
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.php [L,QSA]

# Fara listare de directoare
Options -Indexes

# Protejeaza fisierele sensibile de accesul web (config + orice .json)
<IfModule mod_authz_core.c>
    <FilesMatch "\.(json)$">
        Require all denied
    </FilesMatch>
    <Files "config.php">
        Require all denied
    </Files>
</IfModule>
<IfModule !mod_authz_core.c>
    <FilesMatch "\.(json)$">
        Order allow,deny
        Deny from all
    </FilesMatch>
    <Files "config.php">
        Order allow,deny
        Deny from all
    </Files>
</IfModule>
