Are documents in files/public available on the internet at large?

tony1 · September 25, 2015, 4:50pm

Hi,
I am wondering if my uploaded attached documents are available on the internet by default?
I attach sensitive financial documents to many of PI’s, PO’s etc, and I was wondering if these are accesible outside of the organisation (as they reside in public/files.
If so, is there a way to change this behaviour, either through permissions or forcing erpnext to upload elsewhere?

Thanks,
Tony

rmehta · September 28, 2015, 12:16pm

@tony1 Files are public by default. There is no listing though, so you have to know the file names in advance.

Private files is on the to-do list for a while.

cpurbaugh · December 24, 2015, 3:21pm

The frappe framework has been updated to allow private files, so closing now.