Reputation: 6569
Is there any way to block image from getting displayed
Here's the URL http://www.website.com/uploads/pvtimages/image.png
I don't want the image to be displayed to anybody, not even to me but can be downloaded
i...e <a href="http://www.website.com/uploads/pvtimages/image.png">Download</a> i..e only from a specific page (download.php)
I want all images in that folder to be protected.
Is it possible?? using php or .htaccess or both?
Upvotes: 4
Views: 542
Answers (3)
Reputation: 14946
I seem to be answering this question a lot lately... Look, if you don't want something accessed by URL, you don't need to use .htaccess, or PHP. Just don't put it inside the document root at all.
See my answer here, which explains the structure you should use. You can then use PHP to download it; my answer here explains how to download a file with PHP. Doing things this way is easier to maintain, easier to implement and more secure.
Note that this doesn't just apply to images, etc, but also to your PHP libraries and whatever else. Generally, I have one PHP file (e.g. index.php) in the document root, a little bit of CSS, JS and a few images. Everything else should generally be somewhere else.
Upvotes: 1
Reputation: 490213
Add this to your .htaccess.
RewriteEngine On
RewriteRule ^(?:uploads/pvtimages)\b - [F,L]
Or of course get it out of your document root.
This means you will need to serve the image via PHP. Just readfile() and send correct headers.
Upvotes: 0
Reputation: 318508
Yes, put the following header in your .htaccess file:
<Files image.png>
Header set Content-Disposition attachment
</Files>
Of course you can also send this header via PHP, but htacesss makes much more sense in this case. However, it only prevents it from being displayed in the browser. Everyone can download it knowing the link! You cannot really protect images unless you add something like password protection to your site.
You can prevent some hotlinking through referer checks though - but that's just to stop dumb webmasters from embedding your images.. it won't stop anyone who really wants your stuff. But if that's fine for you.. have a look at Allow/deny image hotlinking with .htaccess
Upvotes: 2
Related Questions
- .htaccess - deny from all, excludes images
- How to prevent images from access
- Use Htaccess / php to hide image true URL
- hide image path possible with htaccess?
- Block image from be viewd/download in every browser
- How can I block direct access to images in a directory but allow PHP to display them?
- Block direct link of an image but keep displaying it in pages
- How to i change the rewrite rule to read images only
- Restricting access to images on a website
- Block Direct Access to Dynamic PHP-Image