Needs access controls

  • This is good, but it definitely needs access controls, such as limiting the function to logged in users (not allowing anonymous users to post attachments), otherwise it’s just too risky too use.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Denis Yanchevskiy

    (@denisco)

    Hello @synetech,

    Thank you for the idea. I added it to the list of future enhancements.

    At the moment, you can restrict uploading attachments for anonymous users using this snippet:

    if( ! is_user_logged_in() ) {
	add_filter( 'dco_ca_disable_attachment_field', '__return_true');
}

    Agree with Synetech: risky to let anyone post any attachment. As I am not php-skilled: where (file, location) do I add the snippet given ?
    ( lol to me the snippet reads as disabling logged-in users from adding attachments)

    • This reply was modified 4 years, 12 months ago by idasilver.
    Plugin Author Denis Yanchevskiy

    (@denisco)

    Hello @idasilver,

    For support requests, please create a new topic in the support section.

    where (file, location) do I add the snippet given ?

    You can add this snippet into functions.php file of your active theme or add it in your custom plugin or use special plugins, such as, Code Snippets.

    Plugin Author Denis Yanchevskiy

    (@denisco)

    The feature for restrict uploading attachments only to logged users avaliable at version 1.3.0.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Needs access controls’ is closed to new replies.