nextcloud/apache_secure_data

Alias /nextcloud "@DATAPATH@/"
<Directory "@DATAPATH@">
    Options +FollowSymLinks
    AllowOverride All

    <IfModule mod_dav.c>
      Dav off
    </IfModule>

    <IfModule mod_headers.c>
      Header always set Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
    </IfModule>
    
    SetEnv HOME @DATAPATH@
    SetEnv HTTP_HOME @DATAPATH@
</Directory>

<Directory "@DATAPATH@/data/">
  # just in case if .htaccess gets disabled
  Require all denied
</Directory>