Question

Nginx Folder permission for images folder

  • Posted December 14, 2014

Hi,

I have a PHP web application on my nginx server (Ubuntu). I have a folder called passports. I store passport images in that folder using a php upload page. I want to block access to that folder so that no one can go to:

http://mysite.com/images/passports/johnDoe’sPassport.jpeg

and look at the passports but at the same time my php file can upload to it and can get the link of the image within the application.

Please advice.

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

PHP accesses the images through the filesystem, so if you block HTTP requests to /images/passports, you can block user access to that folder while still allowing PHP to access it.

Edit your nginx server block config and add the following lines:

location /images/passports {
    deny all;
}

Then, reload Nginx so that the changes take effect:

sudo service nginx reload