Preventing Permanent Deletion of Backups on Google Drive

  • Resolved lorenzolll

    (@lorenzolll)


    2 months ago

    I am currently using the free version of the plugin. I am wondering how to prevent a hacker with access from deleting all backups, including those stored on Google Drive, for example. With an admin account, existing backups can simply be deleted.

    With the premium version, settings can be protected with an additional password, but if that gets hacked, everything can still be deleted.

    I am looking for a way to ensure that backups stored in an external location cannot be permanently deleted or are only moved to the trash instead. Currently, UpdraftPlus permanently deletes backups on Google Drive.

    Is there perhaps a hook that can be used in functions.php to move deleted backups to the trash on Google Drive instead of deleting them permanently?

Viewing 1 replies (of 1 total)
  • Plugin Author David Anderson / Team Updraft

    (@davidanderson)

    2 months ago

    Hi,

    Unfortunately, Google Drive’s security model makes this impossible. A Google Drive access token, on any of your sites, gives full access to all UpdraftPlus backups from all sites. This is by design: Google wish anyone with more advanced requirements to use Google Cloud instead, and have not provided more advanced facilities in the programming interface for Drive.

    Amazon S3 is another storage that has suitable facilities, including a free tier that many sites will be able to use (or if not, just pay a few cents) – the secure “can’t delete” configuration for that is documented here: https://updraftplus.com/faqs/what-settings-should-i-use-for-amazon-s3-and-how-should-i-configure-my-amazon-s3-account/

    David

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.