Mikesoft TeamVault
| 开发者 | thestreamcode |
|---|---|
| 更新时间 | 2026年6月10日 02:23 |
| 捐献地址: | 去捐款 |
| PHP版本: | 8.0 及以上 |
| WordPress版本: | 7.0 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
- internal company document areas
- agency-to-client document sharing managed from WordPress admin
- partner or vendor file exchanges that should stay private
- operational archives that must stay separate from the public Media Library
- Upload files with drag and drop
- Organize documents in folders
- Rename, move, preview, download, and delete files from one interface
- Export a folder or the full library as ZIP
- Track uploads, downloads, moves, and deletions in the activity log
- Organize users into groups and grant per-folder permissions (view, upload, download, delete, manage)
- Allow preview-only access without download for sensitive documents
- Set per-user or per-group storage quotas
- Review access reports and export the activity log to CSV
- Send email notifications on key document events
- Apply light white-label branding to the plugin screens
- It creates a dedicated private workspace for documents that should not mix with public website assets.
- It adds capability-based access control with an optional per-user whitelist.
- It keeps storage, maintenance, and export workflows focused on private documents instead of general media management.
- Files are stored outside the normal Media Library workflow
- Access is controlled by the
manage_private_documentscapability, which allows full workspace actions including upload, download, export, rename, move, and delete - Optional per-folder permissions limit access to specific users or groups with granular actions and inheritance; folders with no rules keep the capability-based behavior, and administrators always retain full access
- Settings, groups, quotas, notifications, reports, activity logs, whitelist management, and maintenance tools require administrator-level
manage_optionsaccess - Optional whitelist mode adds a second authorization layer for selected users
- Cleanup and reindex tools help recover from migrations with missing binaries
- Private document storage separated from the Media Library workflow
- Capability-based access control with optional per-user whitelist mode
- TeamVault groups independent from WordPress roles
- Per-folder permissions with granular actions (view, upload, download, delete, manage) and inheritance
- Preview-only access that blocks download and ZIP export
- Per-user and per-group storage quotas enforced before upload
- Access reports by user, file, or folder, with CSV export of the activity log
- Email notifications for upload, download, delete, and access-denied events
- Light white-label branding (name, logo, accent color)
- Folder create, rename, move, and delete operations
- Drag-and-drop uploads with upload validation and clear error messages
- Inline preview for supported files, including PDFs
- ZIP export for folders or the full library
- Activity logging for uploads, downloads, previews, moves, and deletions
- Maintenance tools for orphan cleanup and storage reindex
- Storage widget focused on the space used by TeamVault files
- English interface with optional Italian translation
安装:
- Upload the
mikesoft-teamvaultfolder to/wp-content/plugins/, or install it from the WordPress plugin screen. - Activate the plugin.
- Open
TeamVault > Settings. - Review the allowed file types and access settings.
- Create folders and start uploading private documents.
常见问题:
Are the files really private?
TeamVault is designed to keep files private by storing them outside the normal Media Library workflow and restricting access through authenticated WordPress workflows. Protection still depends on the server environment and the storage rules generated by the plugin.
Is TeamVault a replacement for the Media Library?
No. TeamVault is designed for private operational documents that should stay separate from the public Media Library and normal website assets.
Who can access TeamVault by default?
New activations grant the manage_private_documents capability to Administrators only. You can enable whitelist mode to limit workspace access to selected users.
Sites upgraded from older releases should review existing role capabilities and whitelist settings if Editors previously had TeamVault access.
Are file URLs public?
TeamVault is designed to avoid normal public Media Library URLs by routing access through authenticated WordPress workflows. The exact storage protection still depends on the server environment and the generated storage rules.
Apache/LiteSpeed can enforce the generated .htaccess, IIS can enforce web.config, and Nginx requires an equivalent deny rule for /wp-content/uploads/private-documents/. For high-sensitivity deployments, use a custom storage path outside the public webroot.
Can non-admin users access TeamVault?
Yes, if they have the required capability and, when whitelist mode is enabled, they are explicitly allowed in the plugin settings.
How do groups and per-folder permissions work?
You can create TeamVault groups (independent from WordPress roles) and grant per-folder permissions to users or groups with granular actions: view, upload, download, delete, and manage. Child folders inherit the nearest parent's rules unless they define their own. A folder with no explicit rules keeps the default capability-based behavior, and administrators always retain full access. Granting view without download gives preview-only access, and ZIP export honors the same rule.
Will my existing folders change after upgrading to 2.6?
No. The governance features are opt-in. Folders without explicit permission rules behave exactly as before, and quotas, notifications, and white-label branding start disabled.
Can I limit how much each user or group uploads?
Yes. You can set per-user or per-group storage quotas. When an upload would exceed a limit it is blocked before anything is written, while existing files stay accessible. Administrators are never limited.
Are the governance features free?
Yes. Groups, per-folder permissions, preview-only access, quotas, access reports with CSV export, email notifications, and white-label branding are all included for free in the core plugin.
Can I change the storage directory?
The plugin supports a custom writable storage path at code/configuration level, but the standard admin workflow is built around the default private storage location.
What happens if I migrate the database but not the private files?
The database records can remain visible even if the original binaries are missing. TeamVault includes cleanup and reindex maintenance tools for these recovery scenarios.
Does the plugin support PDF preview?
Yes. Inline PDF preview can be enabled or disabled in the settings.
What does the storage widget show?
The sidebar widget shows only the space used by TeamVault files. On many shared hosting platforms, PHP cannot reliably read the account quota shown by the hosting panel, so the plugin avoids showing misleading total or available values.
What happens on uninstall?
By default, TeamVault keeps its data for safety. You can enable full data removal before uninstall if you want the plugin to delete its files, folders, logs, and settings.
更新日志:
- Added a discreet Sponsor link on the Plugins screen row and a "Support the project" line in the TeamVault settings Information box. TeamVault remains free with all governance features included; sponsorships support development.
- Code quality: annotated the new governance database queries for the WordPress Plugin Check static analysis (no behavior changes).
- New: TeamVault Groups — organize users into departments or teams from a dedicated admin screen, independent from WordPress roles.
- New: per-folder permissions with granular actions (view, upload, download, delete, manage) for users and groups, with inheritance from parent folders and explicit child overrides. Folders with no rules keep the previous behavior, so existing installs are unaffected.
- New: preview-only access — grant view without download to selected users or groups; ZIP export honors the same rule so restricted files are never bundled.
- New: storage quotas — set per-user or per-group upload limits; uploads that would exceed a limit are blocked before any file is written, while existing files stay accessible.
- New: access reports — see who viewed or downloaded what, grouped by user, file, or folder, with date and action filters, plus a one-click CSV export of the full activity log for compliance.
- New: email notifications — get notified on upload, download, delete, and access-denied events; recipients can be administrators, selected users, or groups.
- New: white-label branding — replace the TeamVault name, logo, and accent color inside the plugin screens.
- Improved: clearer upload errors that state exactly what is wrong (disallowed extension with the list of allowed types, or the actual size versus the maximum).
- Improved: refreshed, fully responsive admin UI that follows the plugin design system and the WordPress dashboard, with better keyboard accessibility and contrast.
- Security: downloads, previews, and exports are now authorized per folder; administrators always retain full access.
- All of the above is free: the previously planned paid governance features are now included in the core plugin.
- Added folder move from the context menu and details panel, with protection against moving a folder into its own subtree and cascading path updates for nested folders and files.
- Improved file browser performance on large folders by rendering stored metadata and checking each file's presence on disk only once.
- Replaced native browser delete confirmations with an in-app confirmation modal.
- Added a cancellable upload progress indicator.
- Uninstall data removal now also clears plugin transients (storage-usage cache and auto-reindex markers).
- The storage self-heal scan now runs only when the index is empty (for example after a database reset), not on a timer during normal browsing.
- General quality-of-life maintenance release for public support and contact metadata.
- Added the dedicated TeamVault contact mailbox across repository and WordPress.org-facing documentation.
- Improved the TeamVault file manager responsive layout on narrow desktop and tablet screens.
- Moved the details panel into drawer mode earlier so toolbar actions remain reachable.
- Kept the folder drawer logo visible below the WordPress admin bar on mobile.
- Improved the private storage security notice so it appears only on the TeamVault settings screen.
- Kept WordPress 7.0 compatibility metadata current.
- Compatibility update for WordPress 7.0.
- Verified the TeamVault admin interface and release metadata for the WordPress 7.0 release cycle.
- Fixed file moves so local private-storage files remain available on disk after being moved between TeamVault folders.
- Added regression coverage for filesystem adapters that report a move without leaving the file in the destination.
- Security hardening for uninstall data removal so storage cleanup stays inside the TeamVault storage root and does not follow symlinks.
- Security hardening for upload validation so SVG remains blocked even if custom extension filters try to re-enable it.
- Documentation update confirming that WordPress.org listing translations are handled through translate.wordpress.org.
- Improved file browser refresh reliability in local and proxy-backed environments.
- Improved oversized upload feedback before the browser sends files that exceed effective PHP limits.
- Split REST permission callbacks into clearer read, write, and delete guards.
- Hardened ZIP export temporary file handling.
- Updated the in-plugin admin logo color to TeamVault blue.
- Fixed immediate visibility for newly uploaded files and newly created folders.
- Fixed persistent storage notice dismissal and JavaScript listener accumulation.
- Hardened download and preview streams before response headers are sent.
- Fixed user search autocomplete escaping and REST parameter sanitization.
- Hardened private storage boundary checks and symlink traversal protection.
- Added safer storage reindex validation and clearer administrator storage notices.
- Changed new activations so only Administrators receive TeamVault document access by default.
- Improved activity log IP handling by relying on the direct server address.
- Major security and reliability release with stricter administrator-only controls for settings, logs, maintenance, whitelist management, and uninstall data controls.
- Reduced user data exposure in user search responses.
- Improved large-file handling for uploads, downloads, previews, and ZIP exports.
- Added regression coverage for administrator-only controls and user search privacy.
For the full release history, see
changelog.txtin the plugin package.