I can not get Role Scoper to restrict file downloads. I have enabled ‘Filter Uploaded File Attachments’ and run the Attachments Utility. I attached and inserted a file into a post. I then restricted the post to a certain group. My test user can not view the post, which is correct. However, if that user enters the direct path to the file, they can view the file.
Shouldn’t Role Scoper prevent that?
Did I miss a setting?
Is my htaccess file supposed to have been altered (it hasn’t been)