I notice with digital products that if the url is known such as /downloads/FileNAme.zip then anyone can access them. Is there a way to change the download path perhaps to a directory before public_html to ensure that people cant guess the file name and get freebies?
You need to stop access on the server to that directory or have the directoy not in the web folder.Stevie wrote: I notice with digital products that if the url is known such as /downloads/FileNAme.zip then anyone can access them. Is there a way to change the download path perhaps to a directory before public_html to ensure that people cant guess the file name and get freebies?
OpenCart®
Project Owner & Developer.
I figured it would be best to have the download folder outside of the root but seeing as the downloads folder is uploaded during installation and nowhere to change the download path listed in the Admin, how can it be done?Daniel wrote:You need to stop access on the server to that directory or have the directoy not in the web folder.Stevie wrote: I notice with digital products that if the url is known such as /downloads/FileNAme.zip then anyone can access them. Is there a way to change the download path perhaps to a directory before public_html to ensure that people cant guess the file name and get freebies?
Who is online
Users browsing this forum: No registered users and 4 guests
