# authenticate(Basic)
AuthUserFile /var/www/html/.htpasswd
AuthGroupFile /dev/null
AuthName "Please enter your ID and password"
AuthType Basic
require valid-user

# AccessControl IP/HOST
#order deny,allow
#deny from all
#allow from 106.73.195.30

Require all denied
#Require ip 106.73.195.3

# 検索エンジン避け
#SetEnvIf User-Agent "Googlebot" shutout
#SetEnvIf User-Agent "Slurp" shutout
#SetEnvIf User-Agent "msnbot" shutout
 
#order Allow,Deny
#Allow from all
#Deny from env=shutout

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteCond %{HTTPS} off
    RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
</IfModule>

<IfModule mod_headers.c>
    # クリックジャッキング対策
    Header always set X-Frame-Options SAMEORIGIN

    # XSS対策
    Header set X-XSS-Protection "1; mode=block"
    Header set X-Content-Type-Options nosniff
</IfModule>