Protect files from direct download
June 16th, 2007
Hi guys,
With this script you can control the access to your files with a ACL from secures referrers.
Here the code:
//Array with valid referers.
-
$validos = Array
-
(
-
"http://www.domain.com/files.php",
-
"http://www.domain.com/forum.php",
-
"http://www.domain.com/download/file.php"
-
};
-
-
//If is the referer in the array, we open the file
-
if (in_array($_SERVER["HTTP_REFERER"],$validos))
-
{
-
//Open the file
-
$file = $_SERVER["DOCUMENT_ROOT"]."/somefile.rar";
-
//Send the header with the content type of the file
-
header("Content-type: application/x-rar-compressed;");
-
//Send the header with the length of the file
-
header('Content-Length: ' . filesize($file));
-
//Send the header with the name of the file
-
header('Content-Disposition: attachment; filename= somefile.rar');
-
//Put the content in the var
-
readfile($file);
-
}
-
else
-
//we redirect the user to another page.
-
header("Location:http://www.domain.com/notpermision.php");
![[Slashdot]](/icons/a.png){kind=icon}
![[Digg]](/icons/b.png){kind=icon}
![[Reddit]](/icons/c.png){kind=icon}
![[del.icio.us]](/icons/d.png){kind=icon}
![[Facebook]](/icons/e.png){kind=icon}
![[Technorati]](/icons/f.png){kind=icon}
![[Google]](/icons/g.png){kind=icon}
![[StumbleUpon]](/icons/h.png){kind=icon}
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed