Page 2 of 2

Re: URL Security

Posted: Tue Feb 24, 2009 9:06 am
by johnworf
this might help...

i haven't checked it out but i need to implement something like this soon...

http://www.ngcoders.com/php/selling-dig ... pn-and-php

Re: URL Security

Posted: Tue Feb 24, 2009 11:14 pm
by rashmisharma
A big Thanks to all of u.
Now i m able to do what i want. But still there is a problem like if i type direct path in the url then anyone can able to download file. No .htaccess help me out.

Re: URL Security

Posted: Wed Feb 25, 2009 2:48 am
by Apollo
What is the direct path, and exactly what is inside your .htaccess file?

Re: URL Security

Posted: Wed Feb 25, 2009 8:05 am
by kaisellgren
rashmisharma wrote:A big Thanks to all of u.
Now i m able to do what i want. But still there is a problem like if i type direct path in the url then anyone can able to download file. No .htaccess help me out.
How about you actually put the file outside the document root and let PHP to handle the download?

Re: URL Security

Posted: Wed Feb 25, 2009 11:20 pm
by rashmisharma
I haven't put anything outside the root, instead i have url rewriting so that if my files are in path http://www.mydomain.com/download/filename.pdf then it is shown as http://www.mydomain.com/abc/xyz/downloa ... lename.pdf
so no one actually able to know the exact path of my files.

Re: URL Security

Posted: Thu Feb 26, 2009 8:03 am
by kaisellgren
rashmisharma wrote:I haven't put anything outside the root, instead i have url rewriting so that if my files are in path http://www.mydomain.com/download/filename.pdf then it is shown as http://www.mydomain.com/abc/xyz/downloa ... lename.pdf
so no one actually able to know the exact path of my files.
It is possible to know it. Ultimately you cannot hide anything, although very long filenames and unique looking foldernames will do fine usually.