Re: Protecting Files

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 62164
interpreted = N
texte = I've done this by creating a copy of the PDF based upon the user's credentials. Here's the scenario: 1) .tpl page that can only be viewed if the user's credentials are found in the database. If the page is accessed without credentials they are redirected to a login page whose action points to this .tpl. 2) Once the credentials are verified, have a piece of code that creates a copy of the PDF using something like [cart].pdf. 3) The original PDF has permissions set such that the web server will not display it. 4) Use a trigger to remove the PDF copies that are older than a predetermined time just in case the user bookmarks it. Marc Clint Davis wrote: > I'm running iTools 7.3/Apache 2.0 on an Xserve. > > I have several PDF files on my site. To view the PDFs, each visitor needs to > register first. Even after they register, I don't want them to be able to > access PDFs directly by typing in the full URL - they must click a link > within the site. Since the links are always visible, I can't just hide/show > them based on the registration cookie. > > The flow is like this: > > 1. Visitor clicks link to PDF > 2. Are they registered? > a. Yes > i. Show the PDF > b. No > i. Take them to the register page > ii. Visitor completes form and clicks submit > iii. Show the PDF > > How can this be done? > Use .htaccess? > Use mod_rewrite? > Other solution? > > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://webdna.smithmicro.com/ > > -- ------------------------------------------- Marc Thompson Software Engineer Office of Information Technology University of Utah 801.585.9264 marc.thompson@utah.edu ------------------------------------------- ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Protecting Files (how to display vs. present a link to ( "Mark Pace" 2005)
  2. Re: Protecting Files (how to display vs. present a link to ( eLists 2005)
  3. Re: Protecting Files (how to display vs. present a link to ( "Mark Pace" 2005)
  4. Re: Protecting Files (how to display vs. present a link to ( Stuart Tremain 2005)
  5. Re: Protecting Files (how to display vs. present a link to ( eLists 2005)
  6. Re: Protecting Files (how to display vs. present a link to ( Stuart Tremain 2005)
  7. Re: Protecting Files (how to display vs. present a link to ( eLists 2005)
  8. Re: Protecting Files ( Terry Wilson 2005)
  9. Re: Protecting Files ( Jesse Proudman 2005)
  10. Re: Protecting Files ( devaulw@onebox.com 2005)
  11. Re: Protecting Files ( Kenneth Grome 2005)
  12. Re: Protecting Files ( 2005)
  13. Re: Protecting Files ( Terry Wilson 2005)
  14. Re: Protecting Files ( eLists 2005)
  15. Re: Protecting Files ( eLists 2005)
  16. Re: Protecting Files ( devaulw@onebox.com 2005)
  17. Re: Protecting Files ( Jesse Proudman 2005)
  18. Re: Protecting Files ( Marc Thompson 2005)
  19. Re: Protecting Files ( "my eLists" 2005)
  20. Re: Protecting Files ( Clint Davis 2005)
  21. Re: Protecting Files ( Jesse Proudman 2005)
  22. Re: Protecting Files ( Gary Krockover 2005)
  23. Re: Protecting Files ( Jesse Proudman 2005)
  24. Re: Protecting Files ( Clint Davis 2005)
  25. Re: Protecting Files ( Jesse Proudman 2005)
  26. Protecting Files ( Clint Davis 2005)
I've done this by creating a copy of the PDF based upon the user's credentials. Here's the scenario: 1) .tpl page that can only be viewed if the user's credentials are found in the database. If the page is accessed without credentials they are redirected to a login page whose action points to this .tpl. 2) Once the credentials are verified, have a piece of code that creates a copy of the PDF using something like [cart].pdf. 3) The original PDF has permissions set such that the web server will not display it. 4) Use a trigger to remove the PDF copies that are older than a predetermined time just in case the user bookmarks it. Marc Clint Davis wrote: > I'm running iTools 7.3/Apache 2.0 on an Xserve. > > I have several PDF files on my site. To view the PDFs, each visitor needs to > register first. Even after they register, I don't want them to be able to > access PDFs directly by typing in the full URL - they must click a link > within the site. Since the links are always visible, I can't just hide/show > them based on the registration cookie. > > The flow is like this: > > 1. Visitor clicks link to PDF > 2. Are they registered? > a. Yes > i. Show the PDF > b. No > i. Take them to the register page > ii. Visitor completes form and clicks submit > iii. Show the PDF > > How can this be done? > Use .htaccess? > Use mod_rewrite? > Other solution? > > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://webdna.smithmicro.com/ > > -- ------------------------------------------- Marc Thompson Software Engineer Office of Information Technology University of Utah 801.585.9264 marc.thompson@utah.edu ------------------------------------------- ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Marc Thompson

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Cold Fusion Buster (1997) WC2.0 Memory Requirements (1997) Separate SSL Server (1997) Show items based on login Password (2003) Verifying both name and password (was: THANKS) (1997) [SearchString] problem with [search] context (1997) Re:[off] Promotions Co? (1997) Re:2nd WebCatalog2 Feature Request (1996) Math confusion (2004) Re1000001: Setting up shop (1997) Mac 2.1b2 speed (1997) Announcing general availabilty of WebDNA 4.5 release (2002) Generating Options for a Form. (1997) Setting up shop (1997) Using [detete] (1998) hhtps to http and back? (2000) Max DB Size (2004) [WebDNA] Admin Login Required to Serve any TPL Page Fixed (2009) [WebDNA] maybe silly suggestion? [founditems] (2015) NTbeta18 corrupted? (1997)