Securing Container Fields

Intermediate

Container fields store files, images, and binary data -- know how to control access, encryption, and storage location.

What you'll learn

  • The three container storage modes and their security implications
  • How to encrypt container storage
  • Controlling who can export container content
  • Container access via the Data API

Container fields are a common security afterthought. Files stored in containers can be accessed directly if external storage is misconfigured, are not automatically encrypted with the database, and can be exported or downloaded by any user whose privilege set allows field access. Understanding container storage modes is prerequisite to securing them.

1/4
1

Container storage modes

**Embedded**: data stored in the .fmp12 file itself -- encrypted if the database is encrypted. **External (open)**: files stored in a folder on the server filesystem -- not encrypted by default, accessible directly to anyone with filesystem access. **External (secure)**: files stored in an encrypted container store on the server -- encrypted at rest.

SSL/TLS on FileMaker ServerAudit Logging in FileMaker

Sign in to track your progress and pick up where you left off.

Sign in to FM Dojo