RewriteEngine On

SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1
<IfModule mod_headers.c>

Header set Access-Control-Allow-Origin '*'
Header set Access-Control-Expose-Headers  'Access-Control-Allow-Origin,Access-Control-Allow-Credentials,Authorization'
Header set Access-Control-Max-Age 3600
Header set Access-Control-Allow-Methods 'GET, POST, OPTIONS, DELETE, PUT'
Header set Access-Control-Allow-Headers 'Authorization,X-API-KEY, Origin, X-Requested-With, Content-Type, Accept, Access-Control-Request-Method,X-Auth-Signature'
Header set Access-Control-Allow-Credentials true

</IfModule>




<IfModule authz_core_module>
    Require all denied
</IfModule>
<IfModule !authz_core_module>
    Deny from all
</IfModule>