Installation Instructions
- Copy the distribution files to your web server inside the /ckfinder/ folder or any other folder in your web site.
- Create a folder in the server to hold all uploaded files. By default, CKFinder is configured to use the /ckfinder/userfiles/ folder in your web site.
- Make the above user files folder writable by the internet user. On Windows, give write permissions to the IUSR_<ServerName> user.
- Edit the config.ascx file. Be sure you have correctly set all settings in that file, and that you have enabled CKFinder on it. See Configuration for more information.
You should be ready to go. Just browse _samples/aspx/standalone.aspx to test and see CKFinder in action.
Security Tips
- In IIS, you may set Execute Permissions to "none" in the properties of the user files folder (the folder created in the above step 2).
- The config.ascx file contains many important security settings. Be sure you have reviewed and understood all of them.
- Implement a full authentication solution in the CheckAuthentication() function, based on session variables for example. Do not simply "return true" from it as it will make it possible to any user to upload and delete files in your server, including anonymous users.