It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Restrict Attachments Based on File Type

What do people do to restrict .bmp uploads? :) no matter how big a font in how-tos I use - people still ignore. I also would like to restrict .exe uploads.

I know of but it had not seen much progress...

I would not want to do it completely right - looking into the file, understanding it's format; just a basic extension filter would work for most abusers. thanks!

3 answers

Have a look at overriding the 'attachfile' action

 <action name="attachfile" class="com.atlassian.confluence.pages.actions.AttachFileAction">

You can do this via the conveyor plugin

Hi errno,

You can use this add-on to restrict attachment based on file types

It works well with my system.

0 votes
Matt Ryall Atlassian Team Feb 28, 2013

You can implement this as a servlet filter module in a plugin which intercepts all multipart requests and allows or denies them based on the filename in the request.

I'd look at the AttachFileAction in the Confluence source code as an example of how to handle multipart requests.

Overriding the actions in Confluence as Colin suggests is probably not a great idea. His example there only covers some of the ways in which attachments are added to Confluence.

Hi Matt,

I want to write a plugin that prevents users to update attachments in Confluence. The only way I see is to check during the file upload if an attachment with the same name aleady exists. If yes the request should be canceled (ideally with a note for the user) or the file should be renamed. If I understand you correctly, this should also be possible with a servlet filter module. I read the description, but I am not sure how to identify upload requests. Can you provide some help?

Suggest an answer

Log in or Sign up to answer
This widget could not be displayed.
This widget could not be displayed.
Community showcase
Published Thursday in Confluence

Confluence CVEs and common questions

Two vulnerabilities have been published for Confluence Server and Data Center recently: March 20, 2019 CVE-2019-3395 / CVE-2019-3396 April 17, 2019 CVE-2019-3398 The goal of this article is...

92 views 0 10
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you