file download and authentication

Posted on 2000-03-03
Last Modified: 2010-03-05
There are lots of websites offering files to be downloaded, but only after you login correctly. May I know how do I do this in cgi/perl? i.e. how to hide the path of the file? Or I have to write a script to 'stream' the file to the browser?
Question by:wyldsj
  • 4
  • 2
  • 2
  • +3

Expert Comment

ID: 2579937
A simple suggestion is that you simply have a perl which when it recieves a file request copies it to a temp directory, starts the download and kills the file when done.... Is simple but sometimes thats the best....
LVL 84

Accepted Solution

ozo earned 200 total points
ID: 2580955
open FILE,"</path/file" or die "can't open file $!";
print $query->header(-type=>'application/octet-stream');
while( <FILE> ){ print }

Expert Comment

ID: 2581125

I assume you mead to say that wyldsj should use the CGI module like so:

use CGI;

$query = new CGI;

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.


Author Comment

ID: 2582181
Thanks, both.
However,when I try the method using IE, my browser shows the file content directly (the binary rubbish). Also, I guess there must be somewhere in the script to tell the browser the file name to be downloaded. Anything missing?

Thanks again!

Expert Comment

by:christopher sagayam
ID: 2585590

Expert Comment

ID: 2585802
there are many methods
the simple one is to use cookie
so when some one registers you set
him a cookie then the script which
promt to download will check for cookie
if there is a cookie it will promt to
download else it will redirect to registration page
this way mach more faster than i saw
people wrote and it doesn't matter
weather user can see the path or not
in both cases he won't be able to download it.

there is more complicated way like
to play with file permission
but this in case you are the root of
the server if you want more information

Author Comment

ID: 2586011
>> then the script which promt to download will
>> check for cookie if there is a cookie
>> it will promt to download else it
will redirect to registration page

I am not worrying about the authentication method. I am worrying about how to write a script to "prompt to download". ozo's method works great for me except for the filename.

Expert Comment

ID: 2586320
Well, the browser actually tends to use the last part of the download path... which means you pretty much have to use GET instead of POST.

That's how I got it to work, at any rate.

Here's an example of a URL that should name the file correctly:

Most browsers would grab as the file name.

Note, if that doesn't work, you can also use

which would put the file name in $ENV{'PATH_INFO'}

Expert Comment

ID: 2586854
then i'm sorry you would like to explain
your self better next time  as i understood you was worry
about people who would be able to download with out registration and not how to promt to download

Author Comment

ID: 2587043
Thanks powerlord, it works!
Looks like the answer is a combination from ozo, guadalupe and powerlord. Please let me know whom I should give the credit to.

Thanks to your experts!

Author Comment

ID: 2594517
i guess this is the most important part of the answer.. :)

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
perl script help 12 104
Filtering a file to table 9 101
Search in text file in column and compare 4 47
Transforming a Soap message to a simple xml message! 10 146
Many time we need to work with multiple files all together. If its windows system then we can use some GUI based editor to accomplish our task. But what if you are on putty or have only CLI(Command Line Interface) as an option to  edit your files. I…
Email validation in proper way is  very important validation required in any web pages. This code is self explainable except that Regular Expression which I used for pattern matching. I originally published as a thread on my website : http://www…
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question