# Deny direct access to PHP files
<Files "*.php">
    Require all denied
</Files>

# Deny direct access to encrypted data files
<Files "*.enc">
    Require all denied
</Files>

# Allow access to safe file types
<FilesMatch "\.(jpg|jpeg|png|gif|css|js|json)$">
    Require all granted
</FilesMatch>
