<IfModule mod_rewrite.c>
    RewriteEngine On

    # Preserve Authorization headers for Laravel Sanctum / Bearer auth.
    RewriteCond %{HTTP:Authorization} .
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

    # Preserve X-XSRF-TOKEN if a browser sends it.
    RewriteCond %{HTTP:x-xsrf-token} .
    RewriteRule .* - [E=HTTP_X_XSRF_TOKEN:%{HTTP:X-XSRF-Token}]

    # If the request is not already targeting /public and isn't a real file/folder,
    # send it to the Laravel public front controller.
    RewriteCond %{REQUEST_URI} !^/public/
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule ^(.*)$ public/$1 [L]
</IfModule>
