# cPanel .htaccess for Next.js Static Export in Subfolder # Enable URL rewriting RewriteEngine On # Set base path for subfolder RewriteBase /konfigurator/ # Serve existing files immediately RewriteCond %{REQUEST_FILENAME} -f RewriteRule ^ - [L] # Serve exported HTML files (handles /path and /path/) RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{DOCUMENT_ROOT}/konfigurator/$1.html -f RewriteRule ^(.+?)/?$ /konfigurator/$1.html [L] # Fallback to SPA index.html for client-side routing RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /konfigurator/index.html [L] # Set proper MIME types for Next.js files AddType application/javascript .js AddType text/css .css AddType image/svg+xml .svg AddType image/png .png AddType image/jpeg .jpg AddType image/jpeg .jpeg AddType application/json .json AddType application/wasm .wasm AddType text/html .html # Force UTF-8 encoding AddDefaultCharset UTF-8 # Enable compression for all static files AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/html AddOutputFilterByType DEFLATE text/xml AddOutputFilterByType DEFLATE text/css AddOutputFilterByType DEFLATE application/xml AddOutputFilterByType DEFLATE application/xhtml+xml AddOutputFilterByType DEFLATE application/rss+xml AddOutputFilterByType DEFLATE application/javascript AddOutputFilterByType DEFLATE application/x-javascript AddOutputFilterByType DEFLATE application/json AddOutputFilterByType DEFLATE application/wasm # Set cache headers for static assets ExpiresActive On ExpiresByType text/css "access plus 1 year" ExpiresByType application/javascript "access plus 1 year" ExpiresByType application/json "access plus 1 year" ExpiresByType application/wasm "access plus 1 year" ExpiresByType image/png "access plus 1 year" ExpiresByType image/jpg "access plus 1 year" ExpiresByType image/jpeg "access plus 1 year" ExpiresByType image/gif "access plus 1 year" ExpiresByType image/svg+xml "access plus 1 year" ExpiresByType text/html "access plus 1 hour" # Security headers Header always set X-Frame-Options "SAMEORIGIN" Header always set X-Content-Type-Options "nosniff" Header always set X-XSS-Protection "1; mode=block" Header always set Referrer-Policy "strict-origin-when-cross-origin" Header always set Cross-Origin-Embedder-Policy "require-corp" Header always set Cross-Origin-Opener-Policy "same-origin" # Handle Next.js static files properly Header set Cache-Control "public, max-age=31536000, immutable" # Allow access to _next directory Require all granted Allow from all Options +Indexes # Allow access to static files Require all granted Allow from all