1. Home
  2. Docs
  3. Protect WordPress Uploads
  4. Getting started
  5. Installation & activation

Installation & activation

From within WordPress

1. Visit ‘Plugins > Add New’
2. Search for ‘Protect WordPress Uploads’
3. Activate ‘Protect WordPress Uploads’ from your Plugins page.
4. Go to “after activation” below.


1. Upload the ‘protect-wp-files’ folder to the ‘/wp-content/plugins/’ directory
2. Activate the ‘Protect WordPress Uploads’ plugin through the ‘Plugins’ menu in WordPress
3. Go to “after activation” below.

After activation

1. You should see the menu item ‘Protect WP Files’ in the admin menu.
2. On the wp-admin/upload.php page, you should see an extra admin column called URL.


If you use NGINX as WEBSERVER, add a rewrite the below rewrite to your NGINX config file.

# Restrict private folder for direct access
location ~* ^/wp-content/uploads/private/.*.$ {
    deny all;


How can we help?