I’m working on a project which involves users uploading and downloading
documents. I am using the file_column plugin to do this.
The file_column device stores the documents in the public folder, in the
folder documents. What I would like to do is require that a user be
authorized before they download a document from that directory. What
suggestions do you have on the best way to go about this?
My thought is to create a controller that intercepts all requests for
that directory, and then if the user is logged in it will allow the
download by passing the data manually. I really wish there were a more
elegant method, however.