Reputation: 433
How to prevent direct access to the files with CodeIgniter
How can prevent direct access to the files like the folders/files in application ?
I see in application folder are files .htaccess and index.html that include :
.htaccess
<IfModule authz_core_module>
Require all denied
</IfModule>
<IfModule !authz_core_module>
Deny from all
</IfModule>
index.html
<!DOCTYPE html>
<html>
<head>
<title>403 Forbidden</title>
</head>
<body>
<p>Directory access is forbidden.</p>
</body>
</html>
i create a new folder in a root project directory with name: Customers where will be stored customers PDF files . I paste both files .htaccess and index.html from application to Customers but the PDF files are still able to direct access .
How to make them like application folder files to be able to access only the system ?
Upvotes: 0
Views: 2421
Answers (2)
Reputation: 433
some how this way is working .
Inside the Customers folder i put .htaccess like this one (replace domain with your) and will prevent direct access to files but will allowed access from the system
RewriteCond %{REQUEST_FILENAME} ^.*(pdf|)$
RewriteCond %{HTTP_REFERER} !^https?://(www\.)?domain\.com/ [NC]
RewriteRule . - [R=403,L]
Upvotes: 1
Reputation: 21
The best practice would be to store them outside of your public folder.
To request these files you could use the answer given in another topic: how to access documents(.pdf .doc etc) which are stored outside of the root folder
Upvotes: 0
Related Questions
- Codeigniter : Protect folder from direct access
- How to protect files in public folder in codeIgniter?
- How To Prevent Direct Url Access In Codeigniter
- allow access to certain php files in codeigniter
- How to prevent direct access to files from browser?
- Block direct access to all the php files except some of them in codeigniter
- Restrict browser access to directory files
- prevent directory access
- Prevent file access from actual url and use rewrite .htaccess
- Prevent direct access to files with .htaccess