Are documents in files/public available on the internet at large?

I am wondering if my uploaded attached documents are available on the internet by default?
I attach sensitive financial documents to many of PI’s, PO’s etc, and I was wondering if these are accesible outside of the organisation (as they reside in public/files.
If so, is there a way to change this behaviour, either through permissions or forcing erpnext to upload elsewhere?


1 Like

@tony1 Files are public by default. There is no listing though, so you have to know the file names in advance.

Private files is on the to-do list for a while.

The frappe framework has been updated to allow private files, so closing now.