How to block external download link access if visitor not referred from WP?

Although not a question for this place (perhaps try over at StackOverflow https://stackoverflow.com/ ), you could try

  • checking the referring page (although that can be spoofed)
  • setting a cookie on WP and looking for it on the other site (although the 2nd site may not be able to read the first site’s cookie). (added) Domain 2 cannot read a cookie that domain 1 sets – see https://stackoverflow.com/questions/2919968/php-read-a-cookie-that-is-on-another-domain – so this choice will not work across domains.
  • setting a query variable as you redirect from site 1 to site 2 and checking that queary variable on site 2
  • only showing the links on the WP page if the user is logged in (otherwise, there is no link shown to the non-logged in user). (Which means, if your question said “How do I show a link only to a logged-in WP user?”, that might have been more proper for this place.)

Added

Based on the two links I provided in my comments to my answer, and to show you how easy it is to do the 4th choice (the best cboice) using information in those two links, here is some sample code to allow a shortcode to show the HREF link only to logged in users.

// function for the [url] shortcode
function show_link_to_users ($atts) {
    // check if user is logged in
    if (is_user_logged_in()) { 
        $the_link =  "a href="". $atts["link'] . "'>$atts['url'</a>";
    }
    return;     // returns a null if user not logged in
    }

add_shortcode('url', 'show_link_to_users');

/*  Usage in content area of page/post

 This link only shown for logged in users: [url="https://www.example.com/somepage/here"]

The HREF link will only be shown for logged in users.

Note: no sanitation of the link value in the shortcode
*/

This code would be placed in your Child Theme’s functions.php file. (You don’t want to put it in your theme’s functions.php file, because a theme update will overwrite (destroy) the code. (Read up on Child Themes – there are tons of them out there on the googles/bings/ducks.)

Also Added

If you want to block access to a URL on your site that someone would type in (or a URL that was shared unuathorized), then you will need to use htaccess/htpasswd rules to block a specific file or subfolder of the site.

You can’t do it with WP functions (pretty sure), because the user could access the link directly, rather than through a link on your page.

And Added More

Background thinking about this. General idea, but will take some programming.

  • Put all downloadable/hidden content in the same subfolder of the site.
  • Use htaccess rules to redirect all requests to any file in that subfolder to a specific page
  • that specific page has a template that checks if the user is logged in.
  • if user is logged in, then provided the file to download via headers (not a link)
  • if user is not logged in, display a message telling them to log in.

You could use a query value to specify the file to download (via a lookup in a custom table that links the query value to the file to provide via the headers.

Related Posts:

  1. Limit access to posts/pages by user roles
  2. Tag link suggestion plugin
  3. How to auto strip hyperlinks & images in wordpress post
  4. Why the internal link get converted into a comment?
  5. .com creates automated link in post
  6. Add Filter to get_next_posts_link
  7. Looking for membership style plugin with edit option [closed]
  8. Manually set global $post vars with an ID, in order to use template tags
  9. Show a different number of posts per page depending on context (e.g., homepage, search, archive)
  10. How to prevent a post from being deleted?
  11. Membership / subscription plugins – alternatives [closed]
  12. How To Ignore a Filter On Applying Filter the Content In a Function
  13. Restrict access and display for categories
  14. How to get posts by content?
  15. WP get_permalink Return Wrong URL
  16. Fastest way to loop through all posts?
  17. post expire after x days
  18. Set attached to state
  19. Use plugin or custom post type for game score functionality
  20. Collaborative post submission [closed]
  21. Is there plugin to show recent posts from one website in the widget area of another?
  22. Bulk Image Uploader to create new post from each image [closed]
  23. Display comments of users on single page
  24. Post query – show posts from specified day and month and whole years
  25. Support for simultaneous editing
  26. Accessing post’s meta data based on user’s click of a post
  27. View Private Published Page with URL Code (no login required)
  28. How to add an image from web-link?
  29. The problem with WordPress Importer
  30. Solutions to repost categories into multisite blogs?
  31. submit posts by unregistered users in wordpress
  32. Display post lists in 2nd paragraph
  33. Matching Chapters to a Custom posts [closed]
  34. WordPress display breadcrumbs using Yoast plugin [closed]
  35. Preg Match All doesn’t Allow echo first character for WordPress Taxonomy Tags
  36. Two problems on my WordPress installation [closed]
  37. Excerpts on category page
  38. How to create restrict content to users (by user, not by role)
  39. External RSS feed to WordPress Portfolio
  40. Using Wishlist Member and I need to access a user’s status
  41. Problem with the Loop – want to limit the access to three free articles
  42. how to add text to posts from tags
  43. Is there a social members only login plugin for WordPress? [closed]
  44. Paid Membership Pro with ACF [closed]
  45. Would Gutenberg be considered a PlugIn?
  46. pagination on data fetched using SQL query
  47. How to get the first post and second post in a wordpress blog?
  48. Is there a plugin that lets users request an account on the site? [closed]
  49. How do I publish portfolio items with a future date?
  50. WordPress plugin Post Creation [closed]
  51. Is there a plugin for WordPress for creating ‘Accounts’ where all users who belong to that Account can only see Account data? [closed]
  52. Flickering sidebar when scrolling page [closed]
  53. Where Should i write the code for wordpress ajax voting?
  54. how to execute some code after a post is published in WordPress [duplicate]
  55. Post status doesn’t update to ‘future’ every time?
  56. Inserting shortcode in href – any ideas or workarounds?
  57. trigger email when post is published by someone a user follows
  58. Grab ID from post from plugin and use it to create an object
  59. WP::is_main_query() Not Working
  60. Embed PDF into wordpress
  61. Hook Scripts and Styles in WordPress
  62. WordPress plugin: Getting posts where checkbox selected
  63. how can authors to define custom pages?
  64. WP Editor, save content and category on frontend
  65. Plugin for TinyMCE to create reference to other posts
  66. Problem with ajax plugin for refreshing posts
  67. Constructing a Pay to Download music website with wordpress
  68. help intercepting save_post through plugin
  69. Update existing post dates to random dates and time
  70. Custom fields not showing up in the user info (PaidMembershipsPro)
  71. How do I allow a user to purchase an expiring passcode to access part of my website, from my online store, similar to pay-per-view?
  72. Membership and search criteria
  73. Is it possible to customize a wordpress post from outside dashboard(Something like site.com/post-type/post/?e=post_id)?
  74. How to block access to certain WordPress pages using a snippet
  75. How to echo a PHP Code After the Content
  76. WordPress Product Detail and catalog
  77. WordPress CPT Url metabox collection
  78. User / membership Plugin [closed]
  79. Identify if the_post hook is being called from the admin post list
  80. Include post_date in search
  81. How to Save settings of custom tab product page in admin side in a database?
  82. Displaying friend’s posts only
  83. Hidden Some Setting on Post or Page [duplicate]
  84. Better code/text editing for posts and pages?
  85. Restrict my pages from public
  86. WordPress list child pages of custom post type
  87. Style WordPress Custom Post Type Single Page
  88. SWF in wordpress post
  89. Posts are deleted everyday at night
  90. Enforce conditions only for draft posts using WyPiekacz, ignore pending and published posts
  91. How do I increase the 255 character limit on the ‘description’ field for link library links?
  92. Using Postmash plugin in WordPress 3.3.1
  93. What is the correct method for updating post content from a plugin?
  94. Get post id in Post Page within Wp-admin
  95. PHP $_session is not work in wordpress
  96. Embedding BitBucket Code in Posting
  97. Next and Previous Pagination button not displaying in WordPress
  98. Plugin Recommendation for selling one page content [closed]
  99. How to make temporary expiring link for a downloadable file
  100. Getting 400 Error in wordpress website