<Files ~ "^.(htaccess|htpasswd)$">
deny from all
</Files>
AddCharset UTF-8 .utf8
AddDefaultCharset UTF-8
AddHandler application/x-httpd-php .php3 .php .shtml .html .htm
DirectoryIndex home.php index.php home.html index.html home.htm index.htm
php_value allow_url_include on
php_value allow_url_fopen on
php_value register_long_arrays 1
php_flag session.bug_compat_42 0
php_flag session.bug_compat_warn 0
php_flag session.use_trans_sid 1
php_flag session.use_cookies 1
php_flag display_errors 0

# BEGIN make all pages open as https (secure) - added by Ciprian
RewriteEngine On
RewriteBase /
RewriteCond %{HTTP_HOST} ^www\.(.*)$ [NC]
RewriteRule ^(.*)$ https://%1/$1 [R=301,L]
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
# END make all pages open as https (secure)
<IfModule php7_module>
   php_flag zlib.output_compression Off
</IfModule>
<IfModule mod_headers.c>
# DENY/ALLOW/SAMEORIGIN
#	Header always append X-Frame-Options "SAMEORIGIN"
#	Header unset X-Frame-Options
	Header set X-Frame-Options "SAMEORIGIN"
	<FilesMatch "\.(appcache|atom|bbaw|bmp|crx|css|cur|eot|f4[abpv]|flv|geojson|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|topojson|tt[cf]|txt|vcard|vcf|vtt|webapp|web[mp]|webmanifest|woff2?|xloc|xml|xpi)$">
#	Header unset X-Frame-Options
	</FilesMatch>
</IfModule>