Direct download

  • Resolved Mantap

    (@mantap)


    4 years, 4 months ago

    Hi, thanks for the plugin. I’m wondering to what extent your plugin ‘protects uploads against direct and unauthorized access.’ If someone shares a link, say example.com/wp-content/uploads/filr/1234/myfile.pdf and the people who receive the link paste it into their browser, they’re able to download the file, is that right?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author patrickposner

    (@patrickposner)

    Hey @mantap,

    right!

    If you have the complete URL that works, but let’s say you open:
    example.com/wp-content/uploads/filr/1234/ you will not see which files are inside.

    Same for example.com/wp-content/uploads/filr/

    I Could also pretty easily enhance this with something like:

    – only for logged-in users
    – only available via the list shortcode

    if that’s what you are looking for.

    Best regards,
    Patrick

    Thread Starter Mantap

    (@mantap)

    Hi Patrick,

    I thought that hiding the direct link would help to stop sharing, but I guess sharing the actual file is not much harder than sharing the link. Perhaps it’s slightly harder!

    – The list shortcode still exposes the link via the button, right?
    – Only for logged-in users might help. Perhaps not so much for my site, since anyone can set up an account — but again it’s another step sharers have to go through, so that’s good.

    Again, thanks for the plugin. It’s nice and clean, I like it.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Direct download’ is closed to new replies.