Restricting file types in Files
You can restrict the types of files that users can upload in Files.
Before you begin
To edit configuration files, use the IBM® WebSphere® Application Server wsadmin client. See Starting the wsadmin client for information about how to start the wsadmin tool.
About this task
You can create a list of denied file extensions and prevent users from uploading files with those extensions. You can also create a list of allowed file extensions and only allow users to upload files with those extensions.
Restricting file types affects users uploading new files, or changing the extensions of existing files. Users cannot change existing files to a denied type. Existing documents with denied extensions are not affected. For example, if you deny the .xls extension, users cannot upload .xls files or change existing files to have the .xls extension. But existing .xls files are not affected, and users can still upload new versions of them.
This is not intended as a security application. Files are not analyzed to determine their type, only the file name is read to allow or deny (with an error) the upload. This is only to help you restrict the types of files you store in your environment.
Perform the following steps to restrict file types in Files:
Procedure
Example
<file>
....
<restrictions enabled="true" mode="allow">
<extensions>
<extension>odt</extension>
<extension>odp</extension>
<extension>ods</extension>
</extensions>
</restrictions>
</file>
In this example, files with .odt, .odp, or .ods extensions are the only file types that users can upload.
Use an empty <extension> element to allow or deny files without extensions, or with extensions that exceed the platform limit of 16 characters.