RewriteEngine On

<FilesMatch "^\.env">
  Require all denied
</FilesMatch>

<FilesMatch "\.(zip|sql|env|log)$">
  Require all denied
</FilesMatch>

RewriteRule ^database/ - [F,L]
RewriteRule ^withdrawal-auth\.php$ - [L]

RewriteCond %{REQUEST_URI} !^/api/
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^ index.html [L]
