You can configure Adobe Experience Manager Assets to restrict the type of assets that users can upload. It helps prevent accidental uploads of undesired format and malicious files. The
Day CQ DAM Asset Upload Restriction service enables you to control the type of files that users can upload. By default, Assets allows users to upload assets of all MIME types. However, you can configure the service to restrict users to upload files of specific MIME types only.
Open the Configuration Manager web console. Access
Open the Day CQ DAM Asset Upload Restriction service in Edit mode. By default, the Allow all MIME option is selected, which allows users to upload files of all MIME types.
To restrict users to upload files of certain MIME types only, unselect the Allow all MIME option and specify allowed MIME types in the Allowed Asset MIMEs (regex) fields using regular expressions.
Click Save to save the changes. If you specify MIME-strings for allowed MIME types, the upload operation fails for any asset with MIME type that doesn’t match the configured MIME strings in these fields.