Ok, I tried asking this last week or so, but I'm not sure I ever saw my own post get to the list, nor any replies.
I'd like to offer file downloads without linking directly to an openly avialable file.
<@COMMENT>
<a href=""
This works but won't suit my needs, because anytime can just download the file without any validation.
</@COMMENT>
I'd like to store the file in a non-webserver accessible folder, and reference them indirectly through Tango. The link to download the file shown by one taf would point at another taf (opened in a new window let's say) which verifies the user is ok to download the file, then reads the file from disk and ouputs only the file.
Given the proper Content-Type headers are output by the second taf before outputing the file contents, this should prompt the user to download or open the file, right?
Now all my files will be (or most likely be) .zip, so:
Content-Type: application/zip
should do it, right? Well, it's not. The attached taf's h.taf and i.taf illustrate. They have been kept super minimal for experimentation purposes. Checking procedures and complexity can come once the downloads work.
Also, IE likes to download the taf file instead of the zip file, which I understand is a documented IE bug.
Any thoughts? Thanks much,
Henning Sittler
www.inscriber.com
h.taf
Description: Binary data
i.taf
Description: Binary data
