If I have a first PHP file, activated by a front-end react app, which calls a second php file (which has to access a database and, thus, I want users not to be able to detec
