What is the best way to restrict access to a set of pdf documents? I really don't want to have to use additional .htaccess grant or rewrite rules for this. given this setup public/pdfdocs How do I restrict people from simply entering http://mysite/pdfdocs/docxxx.pdf I tried using routes.rb just as a test which sort of worked. map.connect '/pdfdocs/:name', :controller => 'account', :action => 'login' if they guess the document name correctly then they don't get the login screen and the file is downloaded if it is wrong then the login screen is presented, but this should happen always as i am saying here, always go to the login screen. Maybe this is totally the wrong thing to do but it seems as though it could solve my problem easily as I would then just have to check that they are logged in before offering the document. Thanks Bruce
on 2005-12-03 08:11
on 2005-12-03 11:08
dont place them in public and use a pfd controller with a send_data action Mikkel bruce wrote: > What is the best way to restrict access to a set of pdf documents? > I really don't want to have to use additional .htaccess grant or > rewrite rules for this. >
on 2005-12-04 14:31
Great it works .... Knew I was being totally dumb. Thanks Mikkel that is exactly what I wanted.