<div>
Thanks everyone they were all very useful
</div>


Thanks everyone they were all very useful

<div>
<div class="content wysiwyg-content">
I know how to code to &nbsp;restrict access to php pages, but I am wondering how to prevent images being download, if someone knows the path (without going via the web app).<br />
<br />
I want to make sure only my registered users with the right credentials can access them, but restrict others from accessing them with the path.<br />
<br />
I am not concerned about the authorised users, with the correct credentials from accessing or even downloading them. &nbsp;I just want to make sure for security reasons, that they cannot be accessed unless the person has the correct credentials.<br />
<br />
I would appreciate advice here. &nbsp;I am not sure if this needs to be done at the server level or the app level.
</div>
</div>


I know how to code to  restrict access to php pages, but I am wondering how to prevent images being download, if someone knows the path (without going via the web app).

I want to make sure only my registered users with the right credentials can access them, but restrict others from accessing them with the path.

I am not concerned about the authorised users, with the correct credentials from accessing or even downloading them.  I just want to make sure for security reasons, that they cannot be accessed unless the person has the correct credentials.

I would appreciate advice here.  I am not sure if this needs to be done at the server level or the app level.

Preventing access to images

The Apache HTTP Server is a secure, efficient and extensible server that provides HTTP services in sync with the current HTTP standards. Typically Apache is run on a Unix-like operating system, but it is available for a wide variety of operating systems, including Linux, Novell NetWare, Mac OS-X and Windows. Released under the Apache License, Apache is open-source software.

Apache Web Server

PHP is a widely-used server-side scripting language especially suited for web development, powering tens of millions of sites from Facebook to personal WordPress blogs. PHP is often paired with the MySQL relational database, but includes support for most other mainstream databases. By utilizing different Server APIs, PHP can work on many different web servers as a server-side scripting language.

MySQL is an open source, relational database management system that runs as a server providing multi-user access to a number of databases. Acquired by Oracle in 2009, it is frequently used in combination with PHP installations, powering most of the WordPress installations.