Downloads are not limited

  • Resolved erenor

    (@erenor)


    7 years, 10 months ago

    Hello.

    When i create a category for files and limit it to a specific user role, the other users not belonging to that role do not see the file in their listings.

    Still, if they manually enter the url (just by “brute forcing” the ID in the url), like

    /download/hidden-category/?wpdmdl=2109

    they are able to download the file, whatever role they are on.

    Am i missing some configuration somewhere?

    Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Shahjada

    (@codename065)

    If someone tries to download such unauthorized file, they just will get a file permission-denied.txt

    Thread Starter erenor

    (@erenor)

    Yes, you’re right.

    I thought the Categories would be enough for that (by setting role access to them), but instead there’s a field in a metabox controlling “access to the file”. So, the categories are only for the “folders” in the tree.

    Now that it’s clear, everything works fine.

    Thank you.

    Plugin Contributor W3 Eden, Inc.

    (@w3eden)

    Categories would be enough, but in that case, you need to clear access field value for the package, as “All Visitors” is pre-selected.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Downloads are not limited’ is closed to new replies.