Can I also limit the access authorization for media sources in the frontend?
PDF files in an internal area are to be made available for download. But if I enter the URL of the file in the browser, I can download the file without registration.
Is there a way to make files only for web users available?
ModX 2.7.0
Login 1.9.7
The usual method is to put the files outside the web root, and/or hash their filenames so users won't know the actual filenames. There are several snippets to help you serve them up.
FileDownload R is one.
@nuan88 -- I don't think that would stop someone from downloading a file directly from the assets directory if they knew the URL. In that case, the Personalize extra would never run.
wow! thank you, I will check its probably FileDownload R which is doing/can do that, I will look into it, thank you!
From your earlier comment I didn't quite realize FileDownload R was the solution.