Sorry, I should have mentioned that cfcontent isn't an option since some of the files are VERY large, like 500mb or even 1gb, and that throwing a server handle into that black hole would cripple the box if a dozen people decided to download at the same time.
I did a search (which, I'm ashamed to admit, I should have done before posting) and found iAuth, and it looks good. Does anyone have any experience with it? Does it consume a cf handle for the duration of the download, or does it simply check the user's credentials at the door and then hand off the file to IIS? You think that by now Allaire/Macromedia/Adobe would have come up with a solution for this. Files are only getting bigger, and more and more people are doing file management online. I would love them to create a tag, or perhaps update cfcontent, made specifically for dealing with securing non-cf files that didn't consume cf server resources... just authenticated to the programmer's auth scheme and then hand it off to IIS or Apache or whatever. Seems simple enough. Michael > I've done this by placing such files in a directory not in the webroot. > Then using cffile to retrieve them, and cfcontent to output them to > the user upon request. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 Experience Flex 2 & MX7 integration & create powerful cross-platform RIAs http:http://ad.doubleclick.net/clk;56760587;14748456;a?http://www.adobe.com/products/coldfusion/flex2/?sdid=LVNU Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:267133 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
