RewriteOptions inherit
Options +FollowSymlinks
RewriteEngine On

RewriteCond %{HTTPS} !=on
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301,NE]
Header always set Content-Security-Policy "upgrade-insecure-requests;"

# deal with admin first
RewriteCond %{REQUEST_URI} ^/(admin)
RewriteRule ^admin/assets/(.*)$ backend/web/assets/$1 [L]
RewriteRule ^admin/css/(.*)$ backend/web/css/$1 [L]
RewriteRule ^admin/images/(.*)$ backend/web/images/$1 [L]
RewriteRule ^admin/uploads/(.*)$ backend/web/uploads/$1 [L]
RewriteRule ^admin/downloads/(.*)$ backend/web/downloads/$1 [L]
RewriteRule ^admin/documentos/(.*)$ backend/web/documentos/$1 [L]
RewriteRule ^admin/tmp/(.*)$ backend/web/tmp/$1 [L]

RewriteCond %{REQUEST_URI} !^/backend/web/(assets|css|images|documentos|uploads|downloads|tmp)/
RewriteCond %{REQUEST_URI} ^/(admin)
RewriteRule ^.*$ backend/web/index.php [L]

RewriteCond %{REQUEST_URI} ^/(assets|css|images|uploads|downloads|tmp|qr)
RewriteRule ^assets/(.*)$ frontend/web/assets/$1 [L]
RewriteRule ^css/(.*)$ frontend/web/css/$1 [L]
RewriteRule ^images/(.*)$ frontend/web/images/$1 [L]
RewriteRule ^qr/(.*)$ frontend/web/qr/$1 [L]
RewriteRule ^uploads/(.*)$ frontend/web/uploads/$1 [L]
RewriteRule ^documentos/(.*)$ frontend/web/documentos/$1 [L]

RewriteCond %{REQUEST_URI} !^/(frontend|backend)/web/(images|documentos|assets|css|qr|uploads|downloads|tmp)/
RewriteCond %{REQUEST_URI} !index.php
RewriteCond %{REQUEST_FILENAME} !-f [OR]
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^.*$ frontend/web/index.php

<IfModule mod_security.c>
  SecFilterEngine Off
  SecFilterScanPOST Off
</IfModule>

# php -- BEGIN cPanel-generated handler, do not edit
# Set the “nf-php74” package as the default “PHP” programming language.
<IfModule mime_module>
  AddHandler application/x-httpd-nf-php74___lsphp .php .php7 .phtml
</IfModule>
# php -- END cPanel-generated handler, do not edit