<IfModule mod_authz_core.c>
    Require all granted
</IfModule>

DirectoryIndex index.php

<IfModule mod_headers.c>
    Header set Access-Control-Allow-Origin "*"
    Header set Access-Control-Allow-Methods "GET,POST,OPTIONS"
    Header set Access-Control-Allow-Headers "Content-Type, Authorization, X-Api-Key, X-Timestamp, X-Nonce, X-Signature"
</IfModule>

# Apache: prepend guard for all .php in this folder
<IfModule mod_php7.c>
  php_value auto_prepend_file "C:/xampp/htdocs/boxenstop/api/_guard_bootstrap.php"
  php_flag output_buffering On
</IfModule>
<IfModule mod_php8.c>
  php_value auto_prepend_file "C:/xampp/htdocs/boxenstop/api/_guard_bootstrap.php"
  php_flag output_buffering On
</IfModule>

# Allow OPTIONS for CORS preflight
RewriteEngine On
RewriteCond %{REQUEST_METHOD} =OPTIONS
RewriteRule ^ - [R=204,L]