how can put limitation in access different user? website, according different user, each user can access it's own files , don't want other users able download user's files via it's link
store files outside of web root , give them key (not file name). create handler serve files. when request made file, ensure requested file id valid, , current user has access requested file. if ok, read file contents , write them http response.
Comments
Post a Comment