MCM Protected File View


Protects uploaded files so they can only be viewed by logged-in users

This plugin does not work with the media library. It only protects files uploaded through the plugin itself.

Requires a web server that supports .htaccess files for access control, such as Apache on Linux. Please note that even Apache on Linux
disables .htaccess files in newer versions in some configurations, so please check to make sure your files aren’t publicly accessible.
You can test that your files are protected by using the wp-content/uploads/ path or
by using the “Test link security” link on the “List all protected uploads” page. You should receive a 403 Forbidden error
if it’s working correctly.

This plugin does not collect any private data itself though it’s possible logged-in users may upload private data to your website using this plugin.

While we attempt to provide basic support for this plugin here on the forums, for advanced or priority support please use the pro version.
The pro version also adds per user role file permissions, so, for instance, you can have a file that’s only accessible to a premium role, while not accessible to a basic role.


  1. Unzip the plugin zip file
  2. Upload the entire folder to the /wp-content/plugins/ directory
  3. Activate the plugin through the ‘Plugins’ menu in WordPress


There are no reviews for this plugin.

Contributors & Developers

“MCM Protected File View” is open source software. The following people have contributed to this plugin.




  • Improved Security


  • Add link security checker


  • Fix for deprecated code in add_options_page() call


  • Fix for possible XSS and CSRF issues


  • Fix for Multi-site compatibility


  • Fix for MS Word documents not uploading


  • Initial version