Hello twsocket,

  I'm trying to write a simple web server and I want it to be
  accessible for authorized users only. I also want it to use
  different folders for different users, for example, when "admin"
  connects to http://localhost/, he sees "c:\" listing and when
  "user" connects to the same url, he sees "c:\limited\" listing.

  I made the authorization routines and all works fine. However, I'm
  not sure that I used a safe method to set the root folder for the
  user. I thought it should be done in

  > procedure Tfemform.httpAuthGetPassword(Sender, Client: TObject;

  right after the password was verified, and I hoped that

  > clientcnx.DocDir:=ehroot.Text;

  will work, but it doesn't. The users sees the "THttpSerber.DocDir"
  anyway. I only made it work by changing the path for the whole
  component (THttpServer.DocDir) and I'm not sure that it is safe
  enough. I expect it this change may be harmful when many users use
  the server at one time. Can you suggest anything? Is it possible to
  change a root for a user without changing the root of the whole
  component? Thanks.

  PS: The root can be easily changed in ftp module for every user, but I
  can't make it work in http module.

Best regards,
 Antol                          mailto:[EMAIL PROTECTED]

To unsubscribe or change your settings for TWSocket mailing list
please goto http://www.elists.org/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be

Reply via email to