Posted by Jens Kleikamp on 05/27/05 16:40

<veröffentlicht & per Mail versendet>

symbulos wrote:

> Dear friends,
>
> we are using php for developing a small tool for uploading files for
> download
> (publications). Using the usual move_uploaded_file, the publications are
> loaded into a directory where the webserver can write / read.
>
> Unfortunately, that means every person who connects to the directory can
> see the files. If some of the files are for sale, how do you stop the user
> from seeing them / downloading them without permission?
>
> Is there any other way to upload files using php?
>
> Thanks in advance!

Probably you want to upload the files in a directory outsite the document
root, but read permission by the webserver user.
Then you can you use e.g. PEAR::HTTP_Download for sending the files to the
client.

Hope this helps, and sorry for my bad english. :)

cheers
Jens

[Back to original message]