<IfModule mod_headers.c>
    SetEnvIfNoCase Origin "^http://localhost:3000$" AccessControlAllowOrigin=$0
    SetEnvIfNoCase Origin "^http://127\.0\.0\.1:3000$" AccessControlAllowOrigin=$0
    SetEnvIfNoCase Origin "^https?://freshpress\.losenviskas\.com$" AccessControlAllowOrigin=$0
    SetEnvIfNoCase Origin "^https?://www\.freshpress\.losenviskas\.com$" AccessControlAllowOrigin=$0

    Header always set Access-Control-Allow-Origin "%{AccessControlAllowOrigin}e" env=AccessControlAllowOrigin
    Header always set Access-Control-Allow-Credentials "true" env=AccessControlAllowOrigin
    Header always set Access-Control-Allow-Methods "GET, POST, PUT, PATCH, DELETE, OPTIONS" env=AccessControlAllowOrigin
    Header always set Access-Control-Allow-Headers "Origin, X-Requested-With, Content-Type, Accept, Authorization, X-CSRF-TOKEN, X-XSRF-TOKEN" env=AccessControlAllowOrigin
    Header always set Access-Control-Max-Age "86400" env=AccessControlAllowOrigin
    Header always set Vary "Origin"
</IfModule>

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /backend/

    # Handle CORS preflight requests immediately
    RewriteCond %{REQUEST_METHOD} OPTIONS
    RewriteRule ^ - [R=204,L]

    # Don't rewrite if already going to public folder
    RewriteCond %{REQUEST_URI} !public/
    
    # Rewrite all requests to public folder
    RewriteRule ^(.*)$ public/$1 [L]
</IfModule>
