I’ve read in the documentation that you can download form data via a URL formed like www.site.com/the-form-name/output.csv or something similar. My question is whether this is access-restricted in any way? Could someone who could knew the url gain access to this information? I’m very new to CM1 and haven’t found an answer.
Yes, the method of retrieving form data you are speaking of will redirect you to Tomcat’s secure HTTPS port and require a user name and password. This is authenticated against the user(s) in your tomcat-users XML file.