• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 179
  • Last Modified:

file download and authentication

There are lots of websites offering files to be downloaded, but only after you login correctly. May I know how do I do this in cgi/perl? i.e. how to hide the path of the file? Or I have to write a script to 'stream' the file to the browser?
0
wyldsj
Asked:
wyldsj
  • 4
  • 2
  • 2
  • +3
1 Solution
 
guadalupeCommented:
A simple suggestion is that you simply have a perl which when it recieves a file request copies it to a temp directory, starts the download and kills the file when done.... Is simple but sometimes thats the best....
0
 
ozoCommented:
open FILE,"</path/file" or die "can't open file $!";
print $query->header(-type=>'application/octet-stream');
while( <FILE> ){ print }
0
 
guadalupeCommented:
ozo,

I assume you mead to say that wyldsj should use the CGI module like so:

use CGI;

$query = new CGI;

No?
0
Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

 
wyldsjAuthor Commented:
Thanks, both.
However,when I try the method using IE, my browser shows the file content directly (the binary rubbish). Also, I guess there must be somewhere in the script to tell the browser the file name to be downloaded. Anything missing?

Thanks again!
0
 
christopher sagayamCommented:
1
0
 
romioCommented:
there are many methods
the simple one is to use cookie
so when some one registers you set
him a cookie then the script which
promt to download will check for cookie
if there is a cookie it will promt to
download else it will redirect to registration page
this way mach more faster than i saw
people wrote and it doesn't matter
weather user can see the path or not
in both cases he won't be able to download it.

there is more complicated way like
to play with file permission
but this in case you are the root of
the server if you want more information
mail.
0
 
wyldsjAuthor Commented:
>> then the script which promt to download will
>> check for cookie if there is a cookie
>> it will promt to download else it
will redirect to registration page

I am not worrying about the authentication method. I am worrying about how to write a script to "prompt to download". ozo's method works great for me except for the filename.
0
 
powerlordCommented:
Well, the browser actually tends to use the last part of the download path... which means you pretty much have to use GET instead of POST.

That's how I got it to work, at any rate.

Here's an example of a URL that should name the file correctly:

http://www.aserver.com/cgi-bin/download.pl?file=something.zip

Most browsers would grab something.zip as the file name.

Note, if that doesn't work, you can also use
http://www.aserver.com/cgi-bin/download.pl/something.zip

which would put the file name in $ENV{'PATH_INFO'}
0
 
romioCommented:
then i'm sorry you would like to explain
your self better next time  as i understood you was worry
about people who would be able to download with out registration and not how to promt to download
0
 
wyldsjAuthor Commented:
Thanks powerlord, it works!
Looks like the answer is a combination from ozo, guadalupe and powerlord. Please let me know whom I should give the credit to.

Thanks to your experts!
0
 
wyldsjAuthor Commented:
i guess this is the most important part of the answer.. :)
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 4
  • 2
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now