stackoom
  简体   繁体   中英

Restrict access to folder inside public_html

 原文  2016-08-25 15:04:13       php/ wordpress/ .htaccess

Question

I am currently making a WordPress user system, that is supposed to feature private files, that can be uploaded to each user. In order to achieve this, I am using a filter that places the files in question in a subfolder to uploads named secretfiles. The filter won't allow me to place the files outside the public_html, so I have to do it this way.

Now I am planning to exclude all access to the this 'secretfiles' folder using .htacces, and write a downloadscript that checks whether a user is allowed to download requested files, before sending them to him.

Would this be a safe way to make the files truly private, even though they are placed inside the public_html folder. And what would my .htaccess code be?

Thanks!

1 answers

solution1
 0  2016-08-25 15:14:12

You can deny all access from directly accessing the files in a directory using an .htaccess file (see below example). Users can still access this files if they have been enclosed in a download script as suggested. Note, that the download script should not be a redirection. It should send the file itself. 

Deny from all

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question access files outside public_html folder Protecting folder in public_html How to access files in public_html through the subdomain folder .htaccess pointing public_html to public_html/folder/ - Not Redirecting How to move uploaded files to public folder inside the public_html in Laravel? Display public_html folder automatically HTACCESS - Setting root folder as public_html View folder instead of public_html delete special named folder in public_html Ensuring security of files in folder on public_html
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM