Posted by Captain Paralytic on 02/16/07 11:54

On 16 Feb, 11:52, "Captain Paralytic" <paul_laut...@yahoo.com> wrote:
> On 16 Feb, 11:33, n...@spray.se wrote:
>
> > Hello!
> > I'm trying to secure pdf-files from users that are not logged in on a
> > site.
> > What I have tried now is to make a .htaccess file in the directory
> > where the pdf's are with "deny from all" which stops everyone from
> > downloading them. Then in the member-area when a user wants to
> > download a pdf a php-script copies the pdf-file from the secured-
> > folder to a temp-folder and renames it to some random file-name that
> > the user can download. Then when the user are ready with the download
> > I want the temp-file to be deleted automaticly to prohibit other non-
> > members to find it? How can I do this?
> > Maybe someone have another totally different solution to secure files?
> > Regards
> > /Samuel
>
> Read the file's contents and send it to the terminal with the correct
> headers. No need to write a temp file at all.
> You will use similar code to this, replacing the database with your
> "hidden" files.
> Also rather than using .htaccess to deny access, just hold the files
> in a directory that isn't in the http root structure.

Oops, missed the link!

http://www.onlamp.com/pub/a/onlamp/2002/05/09/webdb2.html

[Back to original message]