Hi there,

Is it possible to protect zip files, too?

It seems to work perfectly for new files.

Any way to make it work for existing files too?

Says you can, but when activated, the Folder restriction is Enterprise version only. So it’s free, but only to File Types, not folders.

Similar to this thread https://www.ads-software.com/support/topic/not-working-in-nginx-2/

There is no way to save the settings for nginx and it’s not working

Hi

Prevent File Access is working great. Previously all our members’ files were indexed and accessible via direct link or Google. Now they are all 403 denied.

There are 100s of Media files in many folders, all named by WordPress by date uploaded that are restricted to logged-in members

But there are just a few files that we would like to make accessible, though, such as our privacy policy, terms of use pdfs and a few articles.

What’s the easiest way to make a few file exceptions that unlogged-in users can still access?

Would it require the Pro version (we’re a small non-profit association)? Or simply placing those files elsewhere… or on some other server (we don’t have direct access to our host ftp or cpanel/file manager). Perhaps a plugin would allow us to move some files outside of the wp-content folder…

Many thanks

Installed the free version to try this plugin. Only need to protect some PDF′s. Worked fine for a week. Then it didn′t. The PDF′s that could be opened in with the PDF Embedder worked fine. But then an error appeared. Said the PDF is “Invalid or corrupted PDF file.” A red square with white text. Turned off the function “protect mediafiles” and then it worked again. Then I turned this plugin on again and then it still worked, but slower than usual. Like it rewrote the .htacess again or something? How do I prevent this error from happening again?

I was testing my site in another browser and found that the images in my pages and posts, and in my “unique headers”, had all vanished, leaving “broken” icons when logged out.

Tested all my newest plugins…. it’s THIS plugin that cuts off media embeds in my own pages and posts, and my “unique headers”.

Now I have to find a new plugin to restrict upload folder access.

They finally all returned

Hi,

I’m not sure if it’s not working or it doesn’t do what I think it does. I’d like to prevent any non-authenticated user from directly linking to a media file in my site.

I’m running nginx on ubuntu and I placed this at the end of the server block in the config file for the site i’m trying to protect

location ~ .*(/protectedfiles) {
return 301 $scheme://$http_host/?mo_media_restrict_request=1&redirect_to=$request_uri;
}

and restarted nginx. Even after quitting and clearing the cache, I can enter the url to where a pdf exists and view/download it without being logged into the wordpress site.

Thanks,

Jeff

Hello! I purchased the Enterprise plan because we need to protect a folder in our files from users that are not logged in. However, I don’t see how to add a folder to the Folder Restriction list. My only options are to view the folders in Uploads. How do I protect a custom folder?

Thank you!

We have plugin Prevent File / Folders Access version 2.4.1 installed which says it is compatible up to WordPress 5.7.3. Has this been tested yet to be verified as compatible with WordPress 5.8.1?

Hi I noticed that you are using cookie based authorization to see if a person is logged in. Am I understanding this correctly? Is this completely secure as technically a person could copy/duplicate a cookie? Or no?

Thanks!

Is it possible to prevent access to folders or files based on WordPress roles?

Regards!

I’m using learn Dash to sell my courses. I know I can use your plug-in to prevent public access to these files.

But I was wondering how I would go about restricting access to a specific course that my customer will be enrolled in?

Thank you!

Hi
I have the plugin blocking pdf and doc files, which are all in a private members’ area. The plugin is working well however there is a privacy policy (in pdf) on the website’s public home page. At the moment, clicking on the link serves up a 404 page as the plugin is doing its job and blocking access however this one pdf should be accessible to everyone.
My question is does the plugin allow file exceptions to the global pdf restriction?
Thanks

The title really explains it. I loaded the plugin on a test site, blocked .pdf and .doc. This seemed to work. I then loaded the plugin on the main site, blocked .pdf and .doc as with the test site but no luck. I could still access .pdf files from a non-logged in browser.
The two sites do have subtle differences as there are one or two things being tested on the test site. Otherwise the two sites are the same.
Any thoughts on what the issue could be?

I could not test folder protection in free version and the premium version cost is too high for our non-profit social fellowship group. We had to remove.

We need to confirm that protecting a folder under /uploads/ will not only protect that folders’ files, but also the files in the subfolders under it.
So if I have /uploads/myfiles/thebestones/ Prevent files / folders access will block non-logged in users from downloading files under /uploads/myfiles/ and files under /uploads/myfiles/thebestones/ ? And any others that might fall under /uploads/ in this example?
Please clarify – Thank you!
Jim

We have plugin version 2.2.0 installed. The plugin details says it is compatible up to WordPress version 5.4.2. We want to upgrade to WP 5.5.1 as soon as possible. Is this plugin compatible with WP 5.1.1? If not, when will it be?

Hi,

We are running your plugin on a server with iis and looking for assistance with the rules to add. If you can please provide that would be much appreciated.

Thanks for your assistance

(I previously posted in a resolved topic, sorry !)

Hello !

I have the same issue as alex60.

I am looking for a translation of this configuration for Nginx.

Do you think you can help me for that ?

# BEGIN MINIORANGE MEDIA RESTRICTION

RewriteCond %{REQUEST_FILENAME} ^.*(png|jpeg|jpg|gif|bmp|pdf|doc|mp4)$ [OR]
RewriteCond %{REQUEST_URI} protectedfiles
RewriteCond %{HTTP_COOKIE} !^.*wordpress_logged_in.*$ [NC]
RewriteRule ^(.*)$ ./wp-login.php?redirect_to=$1 [R=302,NC]

# END MINIORANGE MEDIA RESTRICTION

Thanks !
Gavy

Gavy.

Hello. Do I have to specify specific individual files to protect? I just want any and all PDF’s, currently uploaded, and in the future, to dynamically be protected (so that only logged in users can only see the PDF). Is this possible? It seems like the plugin is asking me to upload files I want to protect, which doesn’t seem practical. Maybe I’m missing a setting’s option? Thank you.

• This topic was modified 4 years, 11 months ago by JJNW.

I wanted to use your fine plugin to stop public access to MP3 and PDF files. It does that well. It also randomly blocks access to JPGs too, so bits and pieces of our home page have missing images, until I comment out the extra .htaccess entries.

I’m using the latest version of WordPress with php 7.3. Below is the extra code your plugin adds to the .htaccess file:

RewriteCond %{REQUEST_FILENAME} ^.*(mp3|pdf)$ [OR]
RewriteCond %{REQUEST_URI} protectedfiles [OR]
RewriteCond %{REQUEST_URI} uploads
RewriteCond %{HTTP_COOKIE} !^.*wordpress_logged_in.*$ [NC]
RewriteRule . – [R=403,L]

It all looks good to me. Any ideas what I can do to fix this issue?

Thank you for your help and Happy Holidays to you!

Best regards,

Mark