Simon Logan
Reputation: 87
Deny access to all files in a directory unless a specific php page is referrer
We have files stored in a directory "uploads/downloads" which are accessed through a php file in the manner of https://www.example.com/request_file.php?file=123. That PHP file queries a database table and returns a file stored in the directory mentioned.
Using htaccess (I presume) how can I deny access to any files in the "uploads/downloads" directory unless the are being accessed through the request_file.php page?
Upvotes: 2
Views: 1130
Answers (1)
Halcyon
Reputation: 57719
Try something like this:
RewriteEngine On
RewriteCond %{HTTP_REFERER} !request_file.php
RewriteRule ^uploads/downloads/ - [L,R=404]
Upvotes: 2
Related Questions
- htaccess restrict access to ALL pages but referrer
- htaccess deny access to all php files except specific one
- PHP How can I block direct URL files access
- .htaccess: deny direct access to files in specific case
- .htaccess Block PHP Referer File access
- Deny direct access to files using htaccess
- restrict access on php file from all except one file
- Block direct access to files into subfolder, but allow to index page with htacess
- PHP - Deny folder access without direct link to file?
- .htaccess: How do I block referers EXCEPT for specific dirs?