I would like something like this: 1. Press "Export" 2. get the file as a download send to the browser. you could add a status symbol to show progress to the user.
The advantage of this approach: ideally no file with sensible data gets created at all, with exception of some kind of temporary file which gets deleted immediatly. and opt-in: export the file to $directory with the security notice. So the "old" functionality is provided for users, who use 3rd party systems on which they have no influence or no possibility to change the import behavior. > - Use random or customized filenames to make them less guessable. > - Add delete-button to backend to make export comfortably deleteable without > using FTP. > - Make exports only accessible via backend. > - Add security notice to export-page in Backend. > > Behaviour can be like this: > 1. Remove filename input box at all. > 2. When user clicks "generate", the file is pshysically written to protected > dir (tmp?). > 3. After file is generated it is offered to download for user, parsed as > standard view > (means using standard admin authentification). > 4. User saves it localy. > > > Any ideas how to solve this better way? _______________________________________________ dev-general mailing list [email protected] http://dir.gmane.org/gmane.comp.php.oxid.general
