1# Allowed uploadable file extensions and mimetypes are defined here.
2# To extend this file it is recommended to create a mime.local.conf
3# file. Mimetypes that should be downloadable and not be opened in the
4# should be prefixed with a !
5
6jpg     image/jpeg
7jpeg    image/jpeg
8gif     image/gif
9png     image/png
10ico     image/vnd.microsoft.icon
11
12mp3     audio/mpeg
13ogg     audio/ogg
14wav     audio/wav
15webm    video/webm
16ogv     video/ogg
17mp4     video/mp4
18vtt     text/vtt
19
20tgz     !application/octet-stream
21tar     !application/x-gtar
22gz      !application/octet-stream
23bz2     !application/octet-stream
24zip     !application/zip
25rar     !application/rar
267z      !application/x-7z-compressed
27
28pdf     application/pdf
29ps      !application/postscript
30
31rpm     !application/octet-stream
32deb     !application/octet-stream
33
34doc     !application/msword
35xls     !application/msexcel
36ppt     !application/mspowerpoint
37rtf     !application/msword
38
39docx    !application/vnd.openxmlformats-officedocument.wordprocessingml.document
40xlsx    !application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
41pptx    !application/vnd.openxmlformats-officedocument.presentationml.presentation
42
43sxw     !application/soffice
44sxc     !application/soffice
45sxi     !application/soffice
46sxd     !application/soffice
47
48odc     !application/vnd.oasis.opendocument.chart
49odf     !application/vnd.oasis.opendocument.formula
50odg     !application/vnd.oasis.opendocument.graphics
51odi     !application/vnd.oasis.opendocument.image
52odp     !application/vnd.oasis.opendocument.presentation
53ods     !application/vnd.oasis.opendocument.spreadsheet
54odt     !application/vnd.oasis.opendocument.text
55
56svg     image/svg+xml
57
58# You should enable HTML and Text uploads only for restricted Wikis.
59# Spammers are known to upload spam pages through unprotected Wikis.
60# Note: Enabling HTML opens Cross Site Scripting vulnerabilities
61#       through JavaScript. Only enable this with trusted users. You
62#       need to disable the iexssprotect option additionally to
63#       adding the mime type here
64#html    text/html
65#htm     text/html
66#txt     text/plain
67#conf    text/plain
68#xml     text/xml
69#csv     text/csv
70
71# Also flash may be able to execute arbitrary scripts in the website's
72# context
73#swf     application/x-shockwave-flash
74
75