Hey everyone, I don't even know where to begin with this. I need to limit folder access to only those members who are allowed to access them. For example, I'm creating a folder /5/ within a folder called /orderreports/ for the order id 5. I need to check which user in my database has access to that folder (I know how to do that much..), but then I need to limit all of the folders in /orderreports/ so that they can only be accessed by those who area allowed. Any ideas on where to start?
Jump to Post
Wouldn't that still allow access to directories via uri? For example if the "sensitive" file was located at example.com/files/abc.doc what's to stop someone (or a bot) finding that file by going to example.com/files/abc.doc, thus bypassing any php pages that would link to it if …
Jump to Post
You can store (relatively small) files such as documents in a mysql database in a "BLOB" (binary long object) field and then query them as easily as a normal string. It's actually easier than it may seem at first, believe me ;)
Here is a brilliant tutorial:
All 5 Replies
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts learning and sharing knowledge.