Member Group File Upload Issues
News and General
I am using EE v4 and have set up member groups to limit access to various development tools. For the member group I set up, I gave them access to the File Manager with all rights to upload, edit and delete. The users can upload images fine, however they are not able to upload SVG files. I tested and the Super Admin can upload SVG files perfectly. The restricted account cannot. Is this a known issue? Is there a workaround?
Please advise. Thx.
SVG is XML-based, and is indistinguishable from uploading arbitrary tags to be rendered by the browser, so they will trip XSS filters. If these are known actors uploading SVG, and you have them separated in their own group it should be safe to give them a pass with the xss_clean_member_group_exception override.
Derek, thank you for the response. It makes sense since the Super Admin role can upload SVGs without issue. However, I added the code to the admin file and it did not clear up the issue. I cleared cache I am wondering if there is something else I need to do.
That will need to go in your system/user/config/config.php file.
Perfect. Thank you! It works great.