Configuration

Attention

To establish complete security, the secure file storage should be located outside the public directory. TYPO3 can work with file storages outside of its own system, so there are no problems to be editorially active in the backend. A file store outside the public directory increases the security of the system by design rather than by configuration.

Steps

  1. create a local storage (best outside TYPO3 public)

    mkdir -p ${TYPO3_PUBLIC_PATH}/../private/secure_fileadmin/

  2. Create a File Storage in backend

    Setup of a secure file storage

    Be aware of the Base URI, as this field needs to be set up.

  3. Optional: Set up an access group for this file storage. This Access group is working as fallback, if no access is defined in file list module.

    Defined access group in file storage record, tab *access*

Note

According to your web server, there should be settings done to redirect the access to files to the TYPO3 instead of answering with a 404 - Not found

Server Configuration

nginx Web Server

nginx example configuration
1location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|ogg|ogv|webm|htc)$ {
2    # your configuration here
3    try_files $uri /index.php?$uri;
4}

Apache2 Web Server

Apache2 example configuration
RewriteCond %{DOCUMENT_ROOT}/%{REQUEST_FILENAME} !-f
RewriteRule ^/(.*)$ /index.php?%{REQUEST_URI} [P,QSA,L]