Hi
I would like to know how can I protect my font files ? Wich methods is the best ?
I went to http://mysite.com/assets/fonts/myfont.eot and the file is downloadable, and I tought Kirby blocked the access of files like .txt or others…

A Php redirection ? an Htaccess deny ? Or something else ?

you could limit it to your domains css like this using htacess:

RewriteCond “%{HTTP_HOST}_%{HTTP_REFERER}” "!.?([^.]+.[^.]+?)_https?://.\1/.$"
RewriteRule .(woff|eot)$ - [F,NC,L]

Sorry to have posted this question a little beginner but I was lost between all methods I could find.
I thought that base64 was a first security layer, and woff+base64 was another security layer, well…I’m still lost I think.
But I tried your method and it’s working, so it suits me.
Thanks !