Protected directory for extern access

YesNo · October 13, 2016, 6:06pm

Hi

Suppose I have this directory in …webroot/uploads

All files in this folder one can be accessed by typing this url http://host/uploads/somefile.pdf

If I set a password protection in a .htaccess file for this folder every time apache will ask for username and password. But for internal use, when I access this pdf-file in php code, appache will also ask for username and password!

This is my problem.

When I call my url from a browser outside with http://host/uploads/somefile.pdf then apache should ask for password and username but when I use this url in php code it should not ask!

I try out all posible ways but couldn’t find any goot solution. Did somebody got the same or similar problem? It would be nice to give me a hint to solve this problem…

Michael

Marcel · October 14, 2016, 2:27pm

put ‘uploads’ outside of webroot (not cake webroot but server webroot). And if you have to access files from that directory in browser do it trough proxy file that will fetch file content only for authorised users.

Diego · October 17, 2016, 3:09pm

you could leave htacess with password and in php code use something like that:

$filePath = "path to somefile.pdf";
$this->response->file($filePath);
return $this->response;

http://book.cakephp.org/3.0/en/controllers/request-response.html

Topic		Replies	Views
Without Logging restrict a webroot folder to access Need Help	1	1451	September 6, 2018
Disable access to media files to unauthenticated users Need Help	2	1362	November 4, 2020
Htaccess password protect for admin url Need Help	1	1302	January 11, 2017
How to protect a directory of assets Need Help	0	459	October 6, 2017
Protected your sourcode	3	972	July 20, 2017

Protected directory for extern access

Releases

Documentation

Community

Protected directory for extern access

Related Topics

Releases

Documentation

Community