Restricting attachment file types in Wikis
Restrict the types of files that users can upload as attachments in wiki pages.
Before you begin
To edit configuration files, you must use the IBM® WebSphere® Application Server wsadmin client. For more information, see Starting the wsadmin client.
About this task
You can create a list of denied file extensions and prevent users from uploading files with those extensions. Or you can create a list of allowed file extensions and only allow users to upload files with those extensions.
Restricting file types affects users
uploading new files, or changing the extensions of existing files.
(Users cannot change existing files to a denied type.) But existing
documents with denied extensions are not affected. For example, if
you deny the .xls
extension, users cannot upload .xls
files
or change existing files to have the .xls
extension.
But existing .xls
files are not affected, and users
can still upload new versions of them.
This is not intended as a security application. Files are not analyzed to determine their type, only the file name is read to allow or deny (with an error) the upload. This is only to help you restrict the types of files you store in your environment.
Perform the following steps to restrict file types in Wikis:
Procedure
- Start the wsadmin client.
- Start the Wikis Jython script interpreter.
- Open
wikis-config.xml
. - In the
<restrictions>
element in the<file>
section, specify theenabled
attribute as true. - In the
<restrictions>
element in the<file>
section, specify themode
attribute as one of the following values:- A value of allow means the extensions in the list are the only ones allowed to be uploaded.
- A value of deny means the extensions in the list are the only ones not allowed to be uploaded.
- In the
<restrictions>
element, add an<extensions>
element, and within the<extensions>
element add one or more<extension>
elements, each containing a file extension to allow or deny. -
Check in the configuration file.Note: You must check in the file during the same wsadmin session in which you checked it out. For more information, see Applying Wikis property changes.
Example
<file>
....
<restrictions enabled="true" mode="allow">
<extensions>
<extension>odt</extension>
<extension>odp</extension>
<extension>ods</extension>
</extensions>
</restrictions>
</file>
In the previous example, .odt, .odp, and .ods IBM® Lotus® Symphony™ extensions are the only extensions users can upload. Case is ignored, and you can use values with or without periods. For example, odt, .odt, and ODT are all valid.
Use an empty <extension>
element
to allow or deny files without extensions, or with extensions that
exceed the platform limit of 16 characters.