2006/8/1, Adrian Holovaty <[EMAIL PROTECTED]>:
On 8/1/06, Todd O'Bryan <[EMAIL PROTECTED]> wrote:
> What I don't understand is how, if the files are saved in the local
> filesystem and served by Apache, how do I control access to the files
> so that only users who should be able to access them can? In other
> words, Bobby uploads a file which I save to the server's filesystem.
> Bobby should then be able to get access to the file, and since I give
> a link to the URL, sure enough, he can. But what's to stop Susie from
> figuring out the URL and requesting the same file?
You could use Apache to serve the files while authenticating against
Django's user database. Check out the docs here:
http://www.djangoproject.com/documentation/apache_auth/
Adrian
--
Adrian Holovaty
holovaty.com | djangoproject.com
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "Django users" group.
To post to this group, send email to django-users@googlegroups.com
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at http://groups.google.com/group/django-users
-~----------~----~----~----~------~----~------~--~---
