I have a flash app that accesses .xml files. The source is viewable and some creative crackers have figured out how to meld a url together to get vital information from those .xml's.
I need to prevent the web client from directly accessing them. Is there a directive (such as Apache's) or mechnisim to keep web clients from accessing yet allow my app access these files? Somthing like <FilesMatch \.(?i:gif|jpe?g|xml)$> Order allow,deny Allow from <some file name> Deny from all <some other web trick> </FilesMatch> in zope.conf or ??? TIA Brian _______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )