Do just what you said and create a directory outside of your Apache doc
root. Just make sure the user PHP is running as has permissions to access
the directory ;) Then use PHP's fpassthru, etc., to send the content of the
file back.
You will need to send a mime-type header; take a look around - there are
tutorials over this on phpbuilder.com I'm pretty sure.
Regards,
--Toby
----- Original Message -----
From: "johnny p." <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, January 22, 2001 12:30 AM
Subject: [PHP] file storage/downloader...
> Ok, here's the prolem: I'm trying to create a feature on my site similar
to
> xdrive.com. Basically I want the user to be able to upload a file and
have
> it stored on my server. I also want to have the ability for the user to
> download the file at a later time. Account authentiaction is handled, no
> problem, but I have no idea where to put the files. I create a
directory,
> it may be guessed and even the filename might be guessed and any user may
be
> able to download the file, breaking user authentication. If I store the
> file in a non-apache directory, how does the user download the file?
>
> My goal is to have the second scenario work, create a directory for each
> user for file storage, and somehow get the user to be able to download it
> after being authenticated. I do not want to use .htaccess files for
this,
> either. I want it to be seemless with the rest of the features of the
site.
>
> Thanks in advance for any ideas,
>
> johnny p.
>
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
>
>
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
