Title: Securing uploads
Last modified: December 3, 2020

---

# Securing uploads

 *  Resolved [d541763](https://wordpress.org/support/users/d541763/)
 * (@d541763)
 * [5 years, 6 months ago](https://wordpress.org/support/topic/securing-uploads/)
 * Hello team, I’ve searched for topics related to this and read the FAQ but cannot
   see it mentioned – does Authorizer provide any facility for managing access to
   uploaded assets?
 * Can assets be uploaded for authorised persons to view/download only, and is that
   any different for Multisite, where the same assets is (normally) accessible at
   URLs related to ANY (multi)site in the system?
 * Thanks for your time,
    Anthony

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [Paul Ryan](https://wordpress.org/support/users/figureone/)
 * (@figureone)
 * [5 years, 6 months ago](https://wordpress.org/support/topic/securing-uploads/#post-13741885)
 * It’s not something that Authorizer can control (since your web server will serve
   static files directly, instead of routing the request through WordPress’s index.
   php entry point).
 * That said, we’ve implemented something similar on some of our sites. Basically,
   you instruct the web server to redirect `/wp-content/uploads` URLs to a custom
   endpoint, and then check for that endpoint in WordPress and do a permissions 
   check before serving the file to the client in PHP.
 * Details are here (we describe Apache, but you should be able to do it for any
   web server):
    [https://wordpress.org/support/topic/secure-folders-in-wordpress-root/](https://wordpress.org/support/topic/secure-folders-in-wordpress-root/)
 *  Thread Starter [d541763](https://wordpress.org/support/users/d541763/)
 * (@d541763)
 * [5 years, 6 months ago](https://wordpress.org/support/topic/securing-uploads/#post-13744532)
 * Thank you for the detailed response, and the for the pointer to a possible solution–
   for some reason my searches on ‘assets’ and ‘uploads’ did not surface that post
   previously.
 * Kind regards,
    Anthony
 *  Plugin Author [Paul Ryan](https://wordpress.org/support/users/figureone/)
 * (@figureone)
 * [5 years, 6 months ago](https://wordpress.org/support/topic/securing-uploads/#post-13746482)
 * Not a problem! It was buried in there and I just happened to recall writing it.
   I stickied the post so hopefully it’s easier for the next person to find.
 * Good luck getting everything set up.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Securing uploads’ is closed to new replies.

 * ![](https://ps.w.org/authorizer/assets/icon-256x256.jpg?rev=1967453)
 * [Authorizer](https://wordpress.org/plugins/authorizer/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/authorizer/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/authorizer/)
 * [Active Topics](https://wordpress.org/support/plugin/authorizer/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/authorizer/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/authorizer/reviews/)

## Tags

 * [multisite](https://wordpress.org/support/topic-tag/multisite/)
 * [wp-content](https://wordpress.org/support/topic-tag/wp-content/)

 * 3 replies
 * 2 participants
 * Last reply from: [Paul Ryan](https://wordpress.org/support/users/figureone/)
 * Last activity: [5 years, 6 months ago](https://wordpress.org/support/topic/securing-uploads/#post-13746482)
 * Status: resolved