Skip to content

DEV Community

Basim Ghouri

Posted on May 28, 2022

Security in Laravel: How to Protect Your App Part 4

#laravel #security #exposefile

Exposed Files

By default, Laravel only exposes the public directory. This is intended to avoid security breaches. Considering that any file that will be exposed can be accessed by anyone, you should avoid adding their sensitive data.

If you want to expose files to download, the best way to do this is by keeping the files on the storage directory and just adding a symbolic link on a public directory. Laravel provides a command to make it easier:

php artisan storage:link

Now, any file that your app stores in the storage directory will be available. Avoid adding manual permissions to any other directory as this could lead to a potential breach.

Top comments (1)

Subscribe

Basim Ghouri • May 30 '22

Follow And like for more laravel security parts

Read next

Introducing the DNA-KEY System: Taking the Password Generator to the Next Level! 🔐

Yassine Sallami - Oct 23

Automatic Discovery and Loading of Livewire Components from Different Namespaces

Jose Erick Carreon - Oct 22

Securing Plain Text using SHA hashing: SHA-256 Sorcery

Bala Madhusoodhanan - Oct 21

How to Minify and Cache CSS & JS Files in Laravel

Süleyman Özgür Özarpacı - Oct 21

Hey! I'm Basim Ghouri 👋 Creative FullStack developer with a demonstrated history of working in the information technology and services industry

Location

Karachi, Pakistan
Education

Mehran University of Engineering and Technology
Work

Software Developer - GeeksRoot
Joined

May 25, 2022

Command Injection Affecting Apache Directory

#security #hacking #apache #owasp

Security in Laravel: How to Protect Your App Part 3

#laravel #security #requestorgin

Security in Laravel: How to Protect Your App Part 2

#laravel #security #xss