Is there any particular method that anyone might know of for restricting access to a file upload directory based on the EE member groups?  Something to prevent a user with insufficient membership status from accessing forbidden files by typing in the URL is what I’m after.  (I know download lock works great, but in my situation, the URL isn’t always stored in its own EE weblog field.)

I’ve been working a bit with File Manager, but I can’t quite see where the ability to “Restrict access according to Upload Destination/Member Group rights” comes in to play unless ‘access’ refers to the ability to upload to.

I’m looking into alternatives to the .htaccess and .htpasswd route if that’s any help.  Thanks in advance.

/bump

I could really use any insight at all here…

ITCC - 07 October 2008 12:13 PM

I’ve been working a bit with File Manager, but I can’t quite see where the ability to “Restrict access according to Upload Destination/Member Group rights” comes in to play unless ‘access’ refers to the ability to upload to.

For what it’s worth: this is exactly what the ‘Restrict access’ ability means: restricting access to the File Manager module (or more specifically: upload destinations viewed via the File Manager) by member group. It doesn’t restrict direct requests. htaccess/htpasswd could be a solution, but how? Not sure, sorry…

I’m also interested in this.  Anyone have any suggestions?

I’m also interested in this.  Wondering if anyone has come up with an answer…?

EDIT:  I found another thread with two possible solutions.