Upload secure folder

-- url of the page with the problem -- : n/a
-- HikaShop version -- : 2.3.2
-- Joomla version -- : 3.3.3
-- PHP version -- : 5.4.29
-- Browser(s) name and version -- : Firefox 31.0
-- Error-message(debug-mod must be tuned on) -- : n/a

I can't figure out the difference between "Upload secure folder" and "Upload folder." I'm configuring the shopping cart in System > Configuration > Main Tab: Files. In the documentation I read: Upload secure folder : Folder in which the products files will be uploaded to. Does that include product image files?

Hello.

How exactly do I change the location of the Upload secure folder, so that it's outside the Joomla installation folder?
Here's what I have done:

I created a folder called "products" in the root directory of my site (outside the public_html folder where the Joomla files are stored).

Now I need to change the default path in the configuration settings:
media/com_hikashop/upload/safe/
What exactly do I enter here?

Also, is there anything I should do / check to make sure everything will work OK (permissions exact status, etc)

Thanks
Panos

Thank you Nicolas.

Should I create a "Deny from all" .htaccess file and add it to my "products" folder,
or this is not necessary since this folder is located outside public_html ?

Can you also use ~/products/

The reason I ask is that I am using a test environment which is like this ROOT/public_html/test and products is in ROOT

Thanks

Hi Nicolas,
PHP 8.1.27 + Joomla 4.4.2 + HikaShop 5.0.3
Secure folder
Public_html/aaaaa/bbbJoomlaInstallationbbb/media/com_hikashop/upload/safe

Let me say we are going to move it to
Public_html/safe

Being that "...Two dots means go up one level in the folder hierarchy...", Please, How can we input Secure Folder in HS setting ?

We have not to copy in the new Secure folder the .../safe/.htaccess file because the new Secure folder is not into the Joomla folder installation, Right ?

Hi Nicolas,
Thank you very much.
...and, Do we have to copy in the new Secure folder also the "logs" subfolder and it's content ?

Hi,
"...So you can have them wherever you want..."
www.hikashop.com/support/documentation/5...nfig.html#main_files
I see. Thank you.
But, What is the best behaviour suggestion for them ?
I mean, Is it better to treat them as the "secure folder" and to move that position outside the Joomla installation as you suggested for files ?

Hi Nicolas,
PHP 8.1.27 + Joomla 4.4.3 + HikaShop 5.0.3
By adding into the configuration "Upload secure folder" and / or "Payment log file" an URL with "../../", saving it, I have back a 404 Page Error, I add here an image for you with details.
Please, What am I missing ?

Hi,
the URL of the 404 page error is mysite.com/administrator/index.php?optio...hikashop&ctrl=config
That should be the right one.

PS - it is happening only when saving if I input (for ex.) ../../mysecurefolder
While it is saved with success (same URL) if I input ../mysecurefolder OR mysecurefolder

Hi Nicolás,

"some security mechanism" = maybe, I'm using Admin Tools.
Anyway, Are you sure? I'm asking because:
- with "../mysecurefolder" saved in configuration
- I installed HS 5.0.4 over the 5.0.3
- and I had back this info message (I suppose from HS)