The “sorry, this document type isn’t allowed for security reasons” blunder seems once you plan to transfer a taboo record type. The reason for these limitations is to forestall your site for undesirable issues or security issues due to document transferring weaknesses. 

As the message implies, WordPress limits the kinds of files you can upload to your site for security reasons. However, by adding some code snippet to your site’s wp-config.php file or employing a free plugin, you’ll manually expand the list of allowed file types so that you’re able to upload any file.

 MIME types explained

MIME stands for Multipurpose Internet Mail Extensions. Browsers and other internet devices employ MIME types to work out content related to a page.

For instance, if you’ve got a .png file and a .jpeg file on a page, the browser would know by their MIME types (not their file extension) to treat both files like images instead of videos or other file types.

By default, WordPress stores an inventory of registered MIME types in wp-includes/functions.php. However, not all MIME types recognized are allowed to be uploaded within the WordPress admin dashboard.

Many document types will be transferred with no issue. Notwithstanding, you’ll see this blunder if WordPress doesn’t uphold the record type.

Classification FILE NAME EXTENSIONS 

Pictures 

.jpg 

.jpeg 

.png 

.gif 

.ico 

Archive 

.pdf 

.doc, 

.docx 

.ppt, 

.pptx, 

.pps, 

.ppsx 

.odt 

.xls, 

.xlsx 

.psd 

Sound 

.mp3 

.m4a 

.ogg 

.wav 

Video 

.mp4, 

.m4v 

.mov 

.wmv 

.avi 

.mpg 

.ogv 

.3gp 

.3g2 

These blunders are normal and may b settled, or probably you’ll whenever contact your facilitating offering sorts of assistance. 

So we should always investigate the means which can help us out with this blunder. 

● Check your document type augmentation. 

● Utilizing a WordPress module 

● Alter your wp-config.php document to transfer any record type. 

● Alter your subject’s functions.php document to vary allowed record types. 

● Contact your facilitating supplier. 

● Utilizing a WordPress Plugin 

WordPress features many Multipurpose Internet Mail Extensions (MIME) modules that will assist you in adding unsupported record types for transfer. 

● First Install and initiate wp add emulate types. 

● Go to your WordPress dashboard. 

● explore to Settings 

● Emulate Type Settings 

● In the Add Values segment 

● add your ideal MIME name and sort

Editing wp-config.php File

While you’ll alter the wp-config.php record to allow certain document types to enter the media library. 

 Authorize uploads for extra MIME types via functions.php

If you’re code-savvy, you’ll add the wants to the active theme’s functions.php file. the instance below are often modified for the file types you would like to allow:

function:

my_theme_custom_upload_mimes( $existing_mimes ) { 

// Add webm to the list of mime types. $existing_mimes[‘webm’] = ‘video/webm’;

// Return the array back to the function with our added mime type.

return $ existing_mimes;

}

add_filter( ‘mime_types’, ‘my_theme_custom_upload_mimes’ );

Access your WordPress installation director

Open wp-config.php file and paste the following syntax

‘That’s all, stop editing! Happy publishing.’ Remember to save your changes.

define(‘ALLOW_UNFILTERED_UPLOADS’, true);

Editing the Theme’s functions.php File

you can adjust your topic’s functions.php record all things being equal. 

Open your wp-content > topics, 

Open the functions.php record and glue the accompanying linguistic structure within the document.

function my_custom_mime_types( $mimes ) { 

// Add new MIME types here

$mimes[‘abiword’] = ‘application/x-abiword’;

return $mimes;

}

add_filter( ‘upload_mimes’, ‘my_custom_mime_types’ );

 Allow unfiltered uploads via wp-config.php

You can add the subsequent code to your site’s wp-config.php file:

define(‘ALLOW_UNFILTERED_UPLOADS’, true);

It’s important to notice that this enables all file types to be uploaded by administrator-level users. It’s best practice to feature file types as required.

Since Flywheel restricts editing the WordPress core, including wp-config.php, please reach out to our support team to perform this alteration.

Utilize the Free WP Extra File Types Plugin 

Suppose you’d not adore changing your wp-config.php document, and additionally, you would like more authority over precisely which record types are often transferred to your site. In that case, you’ll utilize the free WP Extra File Types module at WordPress.org. 

When you introduce and actuate the module, attend Settings → Extra File Types in your WordPress dashboard. 

There, you will see a protracted rundown of document types. Check the container on the brink of the document type(s) that you got to have the choice to transfer and afterward click Save Changes at the base: 

The most effective method to allow document types within the module’s settings 

On the off chances that you don’t see the record type that you’d like better to transfer on the rundown, you’ll likewise add your custom document types at the lower part of the module’s settings list: 

● Step by step instructions to feature your custom record type 

Elective Plugins 

In certain examples, there could be better option modules to empower explicit record types. For example, in our educational exercise on the foremost proficient method to empower SVGs in WordPress, we propose the free Safe SVG module. This not just empowers the SVG filetype within the WordPress media library, it additionally cleans them upon transfer. 

Contact your facilitating supplier. 

Attempt these means and still get an error message; at that time, contact your facilitating supplier. 

Here and there, it should be disappointing to ascertain these mistakes while you’re chipping away at a roll. Continuously recollect there’s always a solution that you can attempt. 

Keeping Your WordPress Site Secure When Permitting Additional File Types 

 

The explanation WordPress blocks many record types is to help keep your WordPress site secure. 

When you empower extra document types, we certainly encourage that you take some safety efforts to monitor your site. 

Keywords:

● Limit non-enrolled clients, all together that they can transfer the record types that they need to transfer. The easiest gratitude to do that is with a record transfer structure. 

● Utilize a WordPress security module to watch your site for weaknesses. 

● Routinely check your WordPress site for conceivably vindictive code. 

● Consider restricting the elements of transferred documents to keep clients from transferring enormous records which will contain malware. 

● Add client movement logging, so you have records of which client transferred which document. 

● When you get this mistake, the essential thing we prescribe is checking the record augmentation to frame sure it’s right. In some cases, you’ll inadvertently erase a document name augmentation or mistype it while altering or saving a record on your PC. 

You can transfer common document types in WordPress with no mistakes. Nonetheless, you’ll see this blunder if WordPress doesn’t uphold the record type. 

We trust this content assisted you with discovering how to fix the “Grieved, this document type isn’t allowed for security reasons” mistake in WordPress

Expectation this text was useful

Happy learning!