Hi
I’m a new user a dolibarr and I realized how great it is!!!
But I don’t know howto use the documents folder.
I need to set 777 to the documents folder permission, so that theres no error message while creating an invoice …
My question:
How can I configure a secure documents folder, so that nobody can access my files (invoices, offers…) over browser?
Thanks a lot!!!
Mike
The best way is to put your document directory outside of your web root.
And change conf file to reflect this.
If you can’t, note that directory scan is already limited by a .htaccess added by dolibarr install process but download a document knowing the full url can’t be restricted if you can’t put your document outside of web root dir. If you can it will not be possible.
This is not a question a unix permission (777 or not) but a question of what is the apache root dir and if files are inside this root dir or not.
Ok Thanks, I tried…
The thing is, that when I changed the folder outside of my webfolder. When I reinstall it there’s a message “open_basedir restriction in effect”, so that i can’t go on with the installation.
But I gave the permission 777 to the folder outside the webfolder
