RewriteEngine On
RewriteBase /ebay/

# Remove .php extension
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^([^\.]+)$ index.php?url=$1 [QSA,L]

# Protect sensitive directories
RedirectMatch 403 ^/ebay/config/.*$
RedirectMatch 403 ^/ebay/logs/.*$

# Block access to .env and .log files
<FilesMatch "\.(env|log|ini|sql)$">
    Order allow,deny
    Deny from all
</FilesMatch>

Options -Indexes