As it stands currently the (plugin)-routes are not called for ‘media’ files, so how would one restrict direct access to script/css files?
Additional info: I want to expose a few scripts/css files only when a user is logged in.
Any file that is copied to the media folder is publicly accessible. There is no way to restrict access to the media folder. Why is it important to restrict direct access to such files? Do they contain any secrets?
might be, not sure .