Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...File Manager permissionFile Manager permission
Previous
 
Next
New Post
5/22/2012 6:41 AM
 
Tan Siok Yee

Joined: 3/26/2009
Posts: 5

Hi, I have recently found an issue on my DNN portal. My scenario as below.

1. I created a page which only allow to access by Registered user. All my contents including images and file was uploaded to a folder in my DNN site. This folder was granted view permission to Registered user only.

2. I tested a scenario to copy the URL of my image on this page and paste on a browser after I logout from my website. However, I still able to view the image eventhough I'm not login. However, if I copy URL of a file link from this page, I not manage to view it without login.

So, now the question is, is there anyway for us to block unauthenticated user to view the images which stored in a folder which only granted view permission to Registered user only? 

Kindly advise. FYI, my version not updated, it was version 5.0.1

Regards,
Tan
 
New Post
5/22/2012 8:17 AM
 
Matthias Schlomann


Joined: 8/10/2003
Posts: 3594

General anonymous user ahve read access to all files on the Webserver site.  If you realy prevent visiters to see, download files you have to store them on a database folder you can create on the File Manager. 

Notice:  Not all modules supporting database folders!

Regards
Matthias
DNN MVP
www.aarsys.de
Metro7 Skin
ShoutCastStats Module for DNN
 
New Post
5/23/2012 5:54 AM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212
DNN file system comes with 3 default folder providers: unsecure (default), Secure and database. files in unsecure folders may be retrieved by using the URL, they are delivered by the webserver without DNN involved. files in secure and database folders are accessed via LinkClick.aspx handler only after performing a permission check.
Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
5/24/2012 5:25 AM
 
Tan Siok Yee

Joined: 3/26/2009
Posts: 5

Thanks for the replies. 

I tried to create folder under Secured -File System and uploaded or copied all the images from the Standard-File System folder into it.

But, when I tried to change my image path to lookup from the new secured folder, the system doesn't show the image. It shown [X]. Besides, I couldn't see the images which located in Secured-File System from the image gallery when I tried to edit the image properties under TEXT/HTML module. However, images in Standard-File System listed in the image gallery.

Hope somebody can advise me on this. Is there anything I have missed out here? Or it's not supported?
 
New Post
5/24/2012 7:14 AM
 
Tan Siok Yee

Joined: 3/26/2009
Posts: 5

If it's an issue for TEXT/HTML module image gallery to read images from secured file system, is there any workaround solution which allow us to configure or display image from the secured folder?

Other than that, is there any idea whether we can control the file access from the server instead of putting the images into the secured file system?

Hope to get your reply a.s.a.p. Thanks.
 
 Page 1 of 1
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...File Manager permissionFile Manager permission


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out