Solved

Best place to store uploaded files?

Posted on 2007-04-10
3
196 Views
Last Modified: 2012-08-13
Hey I'm building an online file manager web app in ASP.Net, I wondering where the best place is to store the files uploaded by a user?

I have them at the moment stored in a folder outside the inetpub folder, at c:\files\filemanager\users\<username>\Root is that ok or is it best to store them in the webapp folder under inetpub?

If it is ok to store at the "files\user..." folder then I've another question. Any video files uploaded I convert them to flv & I was gonna store them in "c:\files\ConvertedVids\users\<username>\" but to play back the flv's I need to pass in a web address
Using FLVScrubber 2 http://www.topfstedt.de/weblog/?page_id=208 with the following embedded code:

<embed flashvars=""    src="http://www.yoursite.com/assets/scrubber.swf?file=http://www.yoursite.com/videos/yourvideo.flv&bufferTime=3&startAt=0&autoStart=false"
    allowfullscreen="true"
    type="application/x-shockwave-flash"
    id="FLVScrubber2"
    style="width: 323px; height: 283px;" />


So do I need to have the converted files stored in a folder under the webapp? Say <webapp>/convertedvids/<username>. How do I control it so only the user logged in gets to view only their vids? Wud I need a web.config for each <username> folder?

As I'm sure u guessed I'm very new to ASP.Net, thanks for any advise.
0
Comment
Question by:rebels_mascot
  • 2
3 Comments
 
LVL 12

Expert Comment

by:ullfindsmit
ID: 18883090
you can restrict access to files/folders based on user authentication on the web.config
0
 

Author Comment

by:rebels_mascot
ID: 18883155
So should I go down the <webapp>/convertedvids/<username> route and have a web.config for each <username> folder? As in I don't want userA to be able to see userB's videos by guessing a url, because I think I'll have to enter the video file name into the url so the embeded flv player knows what to play
0
 
LVL 12

Accepted Solution

by:
ullfindsmit earned 500 total points
ID: 18883171
try changing the filenames to random numbers/strings or something along those lines... make it hard to guess.

The only way to make it a 100% safe is to save it under the wwwroot directory and write your own page to read from the file and stuff... which I believe would be fairly complex.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

In an ASP.NET application, I faced some technical problems. In this article, I list them out and show the solutions that I found.  I hope it will be useful. Problem: After closing a pop-up window, the parent page should be refreshed automaticall…
It was really hard time for me to get the understanding of Delegates in C#. I went through many websites and articles but I found them very clumsy. After going through those sites, I noted down the points in a easy way so here I am sharing that unde…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now