# Onemogući direktan pristup config fajlovima
<Files ~ "\.(config|php)$">
    Order allow,deny
    Deny from all
</Files>

# Dozvoli pristup samo index.php i generate-license.php
<Files "index.php">
    Allow from all
</Files>

<Files "generate-license.php">
    AuthType Basic
    AuthName "Restricted Access"
    AuthUserFile /home/yourusername/.htpasswd # PROMENITE PUTANJU
    Require valid-user
</Files>

# Security headers
<IfModule mod_headers.c>
    Header always set X-Content-Type-Options nosniff
    Header always set X-Frame-Options DENY
    Header always set X-XSS-Protection "1; mode=block"
</IfModule>

# Enable CORS for API
<IfModule mod_headers.c>
    Header set Access-Control-Allow-Origin "*"
    Header set Access-Control-Allow-Methods "POST, OPTIONS"
    Header set Access-Control-Allow-Headers "Content-Type"
</IfModule>

# Handle OPTIONS requests for CORS
RewriteEngine On
RewriteCond %{REQUEST_METHOD} OPTIONS
RewriteRule ^(.*)$ $1 [R=200,L]