Make sure your Custom Files use Include Common Files so that they are part of the web application and protected by Advanced Security. If you tried to include files yourself like this topic, they are standalone files and you need to handle security yourself, that’s another reason why you should not do that anymore.