RewriteEngine On DirectoryIndex ./index.php RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_FILENAME} !.css RewriteCond %{REQUEST_FILENAME} !.js RewriteRule (.*) ./index.php?url=$1#$2 [QSA,L] #token to HTTP_AUTHORIZATION RewriteCond %{HTTP:Authorization} ^(.*) RewriteRule . - [e=HTTP_AUTHORIZATION:%1] #RewriteCond %{HTTPS} off #RewriteCond %{REQUEST_URI} !^/api/update #RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301] AddType application/x-httpd-php .php .phtml