I would like to use the Timeline widget from the SIMILE project at MIT.
No problems here it took me only 15 minutes to download and setup. My question regards securing the data that is passed to the DHTML/AJAX widget.
I use PHP 5 to authenticate users and check authorization against a MySQL database. If the user has the appropriate authorization a XHTML 1.0 strict webpage is dynamically created with the Timeline and other information.
What program, process or script will delete the file?
What will prompt this program, process or script to run?
Where should the file be stored between the time it is created and deleted?
Please let me know how you would approach the problem of securing the XML file against unauthorized users yet still allowing Javascipt access. If you think my approach is the best or only solution please answer my three questions.
I was able to easily setup of the religious Timeline example they have here. So I don't have any code for you other than what is on the SIMILE website.
Dedicated Server Specifications
I am the administrator and I have root access.