Still, using ACL cannot solve my problems. ACL cannot do things that I want to.
After search, what I want to block is called 'hotlinks', not 'direct link'.
After blocking hotlinks, you can:
- View media files within my wiki pages
But you can't:
- Using my media files within your website using
<img src="">
or <video><source src="">
- Viewing my media files by typing file's URL in your web browser's URL bar
But, ACL cannot distinguish these situations. All it can do is just allowing everyone including hotlinks to be able to view media files with read
flag, or just blocks everyone except logged in user from viewing media files.
In ACL, it distinguish users from their group. In this situation, everyone is considered as All
.
At that time, I was able to 'open' certain namespace to public with read
flag. In this situation, I have to do completely different thing. People should be able to view files only accessed within my wiki site, whether they logged in or not.
If ACL can handle these situations, please provide an example of 'I did what you've asked for with this ACL config'.
As far as I know, ACL isn't Swiss Army Knife. These situaions are things that ACL cannot handle at all.
This should be handled by NGINX (or Apache). That's why I asked with NGINX config file contents.
If you need full config content of NGINX, here it is:
mysite.xyz.conf
: https://www.toptal.com/developers/hastebin/egapewezif
nginx.conf
was not modified at all.