November 19, 2008 03:07am pst

1. KCTS 8,675
2. Merete 8,300
3. b0lsc0tt 7,000
4. tigermatt 6,847
5. slam69 5,000
6. henjoh09 4,500
7. antontolen... 4,400
8. war1 4,000
8. StrongBa... 4,000
8. itkamaraj 4,000
11. ahoffmann 3,600
11. thebutters 3,600
13. Darr247 3,164
14. debuggerau 3,000
14. AnthonyR... 3,000
14. Kutyi 3,000
14. 2PiFL 3,000
18. rpggamer... 2,750
18. adamhealy 2,750
20. tedbilly 2,500
20. complexy... 2,500
22. scrathcyboy 2,400
23. richrumble 2,350
24. Shift-3 2,150
24. ravenpl 2,150

1. KCTS 13,775
2. Merete 12,040
3. tigermatt 7,647
4. b0lsc0tt 7,000
5. war1 6,000
6. ahoffmann 5,900
7. DaveHowe 5,500
8. rpggamer... 5,470
9. slam69 5,000
10. henjoh09 4,500
11. scrathcyboy 4,400
11. antontolen... 4,400
13. richrumble 4,350
14. StrongBa... 4,000
14. itkamaraj 4,000
16. PowerIT 3,600
16. thebutters 3,600
18. RobWill 3,500
18. administra... 3,500
20. souseran 3,422
21. Tolomir 3,264
22. ravenpl 3,225
23. Darr247 3,164
24. debuggerau 3,000
24. 2PiFL 3,000
24. TechSoEasy 3,000
24. Kutyi 3,000
24. AnthonyR... 3,000
24. mistaphillips 3,000
24. fm250 3,000

09.14.2008 at 07:05PM PDT, ID: 23730789

	[x] Attachment Details

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

7.6

Trying to make SECURE account file upload/download. Files out side of root directory.

Asked by qrpike in Internet File Sharing Software, HTTP, WebApplications

Tags: PHP, All? Safari, firefox, IE, chrome, N/A

Okay, first off, i have spent ALL weekend trying to figure this out.

I am making a site where someone can make an account, and can upload and download there files. Users only able to see their files.

root:
C:/wamp/www/

User files:
C:/wamp/users/

I have accomplished the following:
created account creation page, which registers the user in the DB, and creates a folder in the (Users) folder called there user id#

i have a page called list_dir.php in the root directory of the site. which goes ^up^ one directory and into users. (../users/) and goes into that persons user id folder.

the list_dir.php displays all the files in that folder correctly.

THE PROBLEM:
when i make a direct link to the file, it says it does not exist. When i make a readfile() i can successfully download .txt files, .exe files, but when i try to download JPG files, its "corrupt".

ive tried ALL the (header) files, and all those long code snippets. i much rather use a simple link, like the one in my code snippet.

My basic goal is making a SECURE way to upload and download files for each user, and not being able to access the files via a URL.

im not sure if there is some code to put in the apache config folder.

i REALLY need to get this part of the site complete.

Specs:
Windows server 2003
Apache
MySQL
PHP 5

Start Free Trial

         
           
             1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:

           
           
             <?php
// This script lists the directories and files in a directory.
session_start();
// Address error handing.
ini_set ('display_errors', 1);
error_reporting (E_ALL & ~E_NOTICE);
 
$search_dir = realpath("../users/" . $_SESSION['id']);
$dirPath = ($search_dir);
 
// open the specified directory and check if it's opened successfully 
if ($handle = opendir($dirPath)) {
/*header("Content-Type: application/force-download");
header("Content-Type: application/octet-stream");
header("Content-Type: application/download");*/
   // keep reading the directory entries 'til the end 
   while (false !== ($file = readdir($handle))) {
 
      // just skip the reference to current and parent directory 
      if (($file != "." && $file != "..") && (substr ($file, 0, 1) != '.')) {
         if (is_dir("$dirPath/$file")) {
            // found a directory, do something with it? 
            echo "Directory: $file<br>";
         } else {
			echo "<a href=\"../users/{$_SESSION['id']}/$file\">$file</a><br />";
			
             
		
         }
      }
   }
 
   // ALWAYS remember to close what you opened 
   closedir($handle);
}
}
?>

           
         

Keywords: Trying to make SECURE account file upl…

	Title
1	PHP and mySQL shows no errors but …
2	PHP upload of video question
3	Apache fails to run php unless browse…
4	Testing that Apache and MySQL are ru…
5	mysql & upload/thumbnail
6	Installing PHP, Mysql & Apache

Loading Advertisement...

20080716-EE-VQP-32 / EE_QW_2_20070628

Trying to make SECURE account file upload/download. Files out side of root directory.

Asked by qrpike in Internet File Sharing Software, HTTP, WebApplications

Tags: PHP, All? Safari, firefox, IE, chrome, N/A

About this solution