I have installed an OpenEMR with latest version (7.0.1) and successfully using the application. What I have observed is, we can login to admin using the below URL:
It is redirecting to the URL: http://localhost/openemr/interface/login/login.php?site=default
From the above URL, If I remove the text after ‘interface/’ and hit enter, it is exposing the “Interface” directory to web.
How can I restrict this public access to this folder and make my application work in a secure way?