Exposed attachment files | WordPress.org

Resolved canarie
(@canarie)

8 years, 10 months ago
Hi there,
I created a form in which I was accepting pdf attachments (resumes). In order to preserve the user’s privacy, I was exporting and deleting responses upon receiving them. I tested this method and the attachment links of the pdfs were not accessible which is what I wanted. I need these attachments to be private.

I was not aware that these would be held in a directory at canarie.ca/wp-content/uploads/wpcf7-submissions. This has now been disabled by our IT department.

Is there a string in the code that can be edited/added to not host these attachments in a public directory? Is there a private setting?
- This topic was modified 8 years, 10 months ago by canarie.

Viewing 1 replies (of 1 total)

Plugin Author jasongreen
(@jasongreen)

8 years, 10 months ago

Hi canarie

You can change the save location and url of contact form attachments using these WordPress filters:

‘wpcf7s_dir’ -> Default: /var/www/example.com/wp-content/uploads/wpcf7-submissions/
‘wpcf7s_url -> Default: http://www.example.com/wp-content/uploads/wpcf7-submissions/

Viewing 1 replies (of 1 total)

The topic ‘Exposed attachment files’ is closed to new replies.

1 reply
2 participants
Last reply from: jasongreen
Last activity: 8 years, 10 months ago
Status: resolved