# Security settings for Multi-User Transcription Server
# Compatible with both mod_php and php-fpm

# Deny access to config file directly (if accessed via URL)
<Files "config.php">
    Require all denied
</Files>

# Deny access to .json data files
<FilesMatch "\.json$">
    Require all denied
</FilesMatch>

# Disable directory listing
Options -Indexes

# Enable compression
<IfModule mod_deflate.c>
    AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/json
</IfModule>

# Set MIME types
AddType application/json .json
AddType text/event-stream .php

# NOTE: PHP settings (display_errors, upload limits) must be configured in:
# - For php-fpm: /etc/php/X.X/fpm/pool.d/www.conf or php.ini
# - For mod_php: Can use php_flag/php_value directives here