|
|
Welcome to the Computer Webmaster Gaming Console Graphics Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact us. |
| |||||||
| PHP PHP for some can be one of the hardest website programming codes, so do you need help on your PHP script, if it is php4, php5 or lower this is the place for you for any PHP help. |
 |
| | LinkBack | Thread Tools | Display Modes |
07-01-2007, 3:58 PM
| #1 | ||
 |
I'm using PHP to upload documents to a server with a link to the document in a mySQL database. I have a script that then allows authorised access to these documents later. What I want to do is ensure that access to the document is only available to authorised individuals. In PHP I can control access to the script, but as soon as I put a link to the document on the server on the webpage such as <a href='myDoc.doc'>Doc</a> anyone can get direct access to the document without any checking on status (eg just entering http://www.location.here/myDoc.doc in the address bar). What's the best way to control access to myDoc.doc so only authorised people can get access to it? I need to do this programmatically so setting file permissions by hand isn't an option. For DB efficiency I'd prefer not to put the document as a BLOB object in the database. Saul | ||
      |
|
07-01-2007, 3:58 PM
| #2 | ||
| |
Another way would be to wirte .htaccess Files dynamicly, and add generated Username and Password to the link. (For example: http://8961ijh:891u23n@www.location.here/myDoc.doc ) So nobody can guess the files Location. (well, the Location but not the password and username) Not in my trousers wrote: > "Saul" <saul.dobney@dobney.com> wrote in message > news:c9674c2a.0307300045.2d744eba@posting.google.c om... > >>I'm using PHP to upload documents to a server with a link to the >>document in a mySQL database. I have a script that then allows >>authorised access to these documents later. What I want to do is >>ensure that access to the document is only available to authorised >>individuals. >> >>In PHP I can control access to the script, but as soon as I put a link >>to the document on the server on the webpage such as <a >>href='myDoc.doc'>Doc</a> anyone can get direct access to the document >>without any checking on status (eg just entering >>http://www.location.here/myDoc.doc in the address bar). >> >>What's the best way to control access to myDoc.doc so only authorised >>people can get access to it? I need to do this programmatically so >>setting file permissions by hand isn't an option. For DB efficiency >>I'd prefer not to put the document as a BLOB object in the database. >> >> > > Keep myDoc.doc in your private filestore (out of web directory) and use a > download script to deliver it.. > > | ||
| |
| Featured Websites | ||||
|
|
| Tags: access, authorised, documents |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Photoshop, XP Views in My Documents | rikstroeb | Graphics in general | 4 | 06-11-2007 9:46 PM |
| Access Programmer / Access Developer Can help Automate your BIZ | sos | Building An Internet Business | 0 | 05-29-2007 3:10 AM |
| Anybody interested to be the only Authorised Master Distributor in their own country???? | alex | Building An Internet Business | 0 | 05-29-2007 3:06 AM |
| Anybody interested to be the only Authorised Master Distributor in their own country???? | alex | Building An Internet Business | 0 | 05-29-2007 3:05 AM |
| Authorised dealer needed!!!! | alex | Building An Internet Business | 0 | 05-29-2007 2:27 AM |
| Featured Websites | ||||
|
Authorised access to documents 
PacMan
Linear Mode
