# Remove the php extension from the filename
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^([^\.]+)$ $1.php [NC,L]
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule ^(.*)$ - [E=HTTP_AUTHORIZATION:%1]

# Set the headers for the restful api
#Header always set Access-Control-Allow-Origin *
#Header always set Access-Control-Allow-Origin https://www.apprentissage-montpellier.education/
SetEnvIf Origin "http(s)?://(localhost(:4200)?|localhost(:8525)?)$" AccessControlAllowOrigin=$0
Header always set Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin
#Header always set Access-Control-Allow-Origin http://137.74.201.50:4010/
#Header always set Access-Control-Allow-Origin http://apprentissage-montpellier.education/preprod/
Header always set Access-Control-Max-Age "1000"
Header always set Access-Control-Allow-Headers "X-Requested-With, Content-Type, Origin, Authorization, Accept, Client-Security-Token, Accept-Encoding"
Header always set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"


<If "%{REQUEST_METHOD} == 'OPTIONS'">
    Header always set Content-Type "text/plain; charset=UTF-8"
    Header always set Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin
    Header always set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"
    Header always set Access-Control-Allow-Headers "X-Requested-With, Content-Type, Origin, Authorization, Accept, Client-Security-Token, Accept-Encoding"
    Header always set Access-Control-Allow-Credentials "true"
    Require all granted
    # Return 200 OK explicitly
    RewriteRule ^(.*)$ - [R=200,L]
</If>