Title: Role Based Access Manager: Media Protector Author: muis IT Published: 2020 年 7 月 24 日 Last modified: 2021 年 6 月 17 日 --- 搜尋外掛 這個外掛**並未在最新的 3 個 WordPress 主要版本上進行測試**。開發者可能不再對這個 外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。 ![](https://s.w.org/plugins/geopattern-icon/rbam-media.svg) # Role Based Access Manager: Media Protector 由 [muis IT](https://profiles.wordpress.org/muisit/) 開發 [下載](https://downloads.wordpress.org/plugin/rbam-media.zip) * [詳細資料](https://tw.wordpress.org/plugins/rbam-media/#description) * [使用者評論](https://tw.wordpress.org/plugins/rbam-media/#reviews) * [開發資訊](https://tw.wordpress.org/plugins/rbam-media/#developers) [技術支援](https://wordpress.org/support/plugin/rbam-media/) ## 外掛說明 Role Base Access Manager: Media Protector WordPress plugin to assign access roles to individual files. This simple plugin allows administrators (anyone with access to the edit-post form for attachments/media) to set access based on roles. The plugin provides a ‘Security’ meta-box on the right hand side where you can type in role names and select them( much like you add tags to regular posts). Whenever a visitor wants to download or view a file or image from the uploads directory, his/her current roles are checked against the configured roles. This plugin tries to look for originals of resized and rescaled images by making a rough search in the meta data table. This allows you to mark the original image of a blog entry for specific access and have all thumbnails and other derived images be protected as well. Please note that this plugin does not clean up after you. If for some reason left-over thumbnails remain in the upload directory, the plugin cannot find them in the database and will allow access. ### Roles This plugin works based on role access management. That means it will try to match the specified roles on the media with the available roles of a user. However, the capabilities system of `WordPress` is cumulative: an `Administrator` has more privileges as an `Editor`, but at least the same. Usually, people only have one Role in this system. As this plugin does not check on capabilities, but on roles, you will need to specify _all_ the roles that should have access to this file (including the ‘ administrator’ role). Alternatively, you can add secondary roles to a User, allowing `Administrator` to also be a `Subscriber`. In this way, you only need to add the Subscriber role to media files to allow it to be downloaded by all registered members. However, adding secondary roles is a manual task. If you have many users and few files, it can be easier to specifiy all roles with the media. If you have many files and few users, you had better use secondary role assignments. If you have many files and many users, you should look into a way to automatically assign roles to people using some sort of on-boarding method. If you need a plugin for that, send me a message. ### Redirections The plugin works by inserting a redirection script in your `.htaccess` file on activation. This does not work properly for `NGinX`, in which case you have to insert a redirection manually. Freely copied from the [https://wordpress.org/plugins/aam-protected-media- files/](AAM Protected Media Files) description: ``` ` ``` location ~* ^/wp-content/uploads/ { rewrite (?i)^(/wp-content/uploads/.*)$ /index. php?rbam-media=1 last; return 307; } ` The plugin will try to read the accessed file from the original request and apply role based access management on it. ## 螢幕擷圖 * [[ * The plugin adds an additional meta-box to the edit form of Media files ## 常見問題集 ### Is there a limit on the number of roles I can assign There is no practical limit imposed by this plugin. ### Do aadministrators have access to all files No, the plugin actively checks on the roles a user has. So if you make a file available to ‘Subscriber’, but not to ‘Administrator’, the latter roles cannot access it. ## 使用者評論 這個外掛目前沒有任何使用者評論。 ## 參與者及開發者 以下人員參與了開源軟體〈Role Based Access Manager: Media Protector〉的開發相關工作。 參與者 * [ muis IT ](https://profiles.wordpress.org/muisit/) [將〈Role Based Access Manager: Media Protector〉外掛本地化為台灣繁體中文版](https://translate.wordpress.org/projects/wp-plugins/rbam-media) ### 對開發相關資訊感興趣? 任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/rbam-media/)、 查看 [SVN 存放庫](https://plugins.svn.wordpress.org/rbam-media/),或透過 [RSS](https://plugins.trac.wordpress.org/log/rbam-media/?limit=100&mode=stop_on_copy&format=rss) 訂閱[開發記錄](https://plugins.trac.wordpress.org/log/rbam-media/)。 ## 變更記錄 #### 1.1.3 Update the ‘Tested-to’ value. Added support for LiteSpeed servers, which read the. htaccess file as well. #### 1.1.0 * Renamed ‘Security’ to ‘Authorization’, which covers the meta-box task better #### 1.0 * Initial version ## 中繼資料 * 版本 **1.1.3** * 最後更新 **5 年前** * 啟用安裝數 **10+** * WordPress 版本需求 ** 5.4 或更新版本 ** * 已測試相容的 WordPress 版本 **5.7.15** * PHP 版本需求 ** 7.2 或更新版本 ** * 語言 * [English (US)](https://wordpress.org/plugins/rbam-media/) * 標籤: * [attachments](https://tw.wordpress.org/plugins/tags/attachments/)[media](https://tw.wordpress.org/plugins/tags/media/) [roles](https://tw.wordpress.org/plugins/tags/roles/)[security](https://tw.wordpress.org/plugins/tags/security/) * [進階檢視](https://tw.wordpress.org/plugins/rbam-media/advanced/) ## 評分 這個項目尚無任何評論記錄。 [Your review](https://wordpress.org/support/plugin/rbam-media/reviews/#new-post) [查看全部使用者評論](https://wordpress.org/support/plugin/rbam-media/reviews/) ## 參與者 * [ muis IT ](https://profiles.wordpress.org/muisit/) ## 技術支援 使用者可在技術支援論壇提出意見反應或使用問題。 [檢視技術支援論壇](https://wordpress.org/support/plugin/rbam-media/)