Manage filesystem restrictions

Use the Filesystem pane of the Restrictions page to add, enable, disable, or delete filesystem restriction entries.

Note SecureTransport applies filesystem restrictions starting with the last in the list and proceeding to the first. When you create two or more restrictions with the same action and that apply to the same users and the same path, make sure to put an entry with a more general path above one with a more specific path.

The following topics provide how-to instructions for managing filesystem restrictions:

Add a filesystem restriction

Use the following procedure to add a filesystem restrictions.

  1. Select Access > Restrictions.
  2. Click the Filesystem tab.
  3. The Filesystem Restrictions pane is displayed.
  4. Click New Entry. A new line is displayed in the list.
  5. Select an Action from the list. For description of the options, see Filesystem restrictions.
  6. In the Allowed field, select No to deny the action or Yes to allow it.
  7. In the Class field, select a user class. Asterisk (*) means all users.
  8. In the Path field, type the path of the directory for which the restriction applies.
  9. Specify the path relative to the file system root for the user. For a real user, the file system root is the operating system root. For a virtual user, the file system root is the user's home directory.
  10. On Windows, you must use a POSIX path. Specify drives as /drives/c and /drives/d instead of C:\ and D:\.
  11. You can use UNIX-style wildcard characters to apply restrictions for an entire directory. Path entries must contain both a forward slash and the asterisk wildcard (/*) to allow or deny everything. For example, on Windows, to prevent deletion of the contents of the C:\temp directory, specify /drives/C/temp/* as the path. In this example, specifying /drives/C/temp only prevents the directory itself from being deleted, not its contents.
    With SecureTransport version 5.4, two new parameters are introduced with Filesystem restrictions: {s} and {i}. These two options are used as prefixes to regular expressions and their purpose is to match the Path in case sensitive ({s})or case insensitive ({i}) manner.
    • {i} matches Path in an expression in a case-insensitive fashion.
      Example use: Delete a File action of files that match the expression {i}/*.xml will delete any xml file, regardless of filename extension case: whether it is XML, xml or XmL.
    • {s} matches all files in an expression in a case-sensitive fashion.
      Example use: Delete a File action of files that match the expression {s}/*.TXT will only delete files with TXT extension (uppercase, as defined in the expression) and will not delete files with .txt extension (lowercase, not defined in the expression).
    • Note Along with the two regular expression prefixes, a dedicated configuration option is introduced: Restrictions.pathIgnoreCases. When it is set to false, all expressions that do not use the {i} or {s} prefixes will match the path in case-sensitive manner. Respectively, when set to true, all expressions without the {i} or {s} prefixes will match in case-insensitive manner.
  12. Click the Save icon (Save) in the Edit column.
  13. SecureTransport adds the new entry at the top of the list. The status of a new entry is set to Disabled.
Note To cancel an add operation, select Access > Restrictions again.

Enable or disable a filesystem restriction

Use the following procedure to enable or disable a filesystem restriction.

  1. Select Access > Restrictions.
  2. Click the Filesystem tab.
  3. The Filesystem Restrictions pane is displayed.
  4. Select the check box for each entry to modify.
  5. Click Enable or Disable.
  6. The icons in the Action column change to indicate the status of the classes.

Edit a filesystem restriction

Use the following procedure to edit a filesystem restriction.

  1. Select Access > Restrictions.
  2. Click the Filesystem tab.
  3. The Filesystem Restrictions pane is displayed.
  4. Click the Edit icon (Edit) in the Edit column for the entry to edit.
  5. Make the required changes to the fields.
  6. Click the Save icon (Save) in the Edit column.
Note To cancel an edit operation, select Access > Restrictions again.

Delete a filesystem restriction

Use the following procedure to delete a filesystem restriction.

  1. Select Access > Restrictions.
  2. Click the Filesystem tab.
  3. The Filesystem Restrictions pane is displayed.
  4. Select the check box for each entry to delete.
  5. Click Delete.
  6. Click OK in the confirmation dialog box.

Example filesystem restriction

The following example supplies some examples for Filesystem restrictions.

  • The first condition defines access to the /f1 folder only.
  • The second condition restricts access to the root folder.
  • The third condition deletes all entirely lowercase TXT files in the /f1/Files folder and omits all other case variations (for example,.TxT and .TXT files will not be deleted with this expression). Also, in case there is a /f1/files path, its content will remain untouched by this expression since it exactly matches the /f1/Files path.
  • The fourth condition deletes all XML files in the /f1 folder (.XML, .xml, .XmL, etc.).


Related Links