i want to protect direct download (copy/paste link)on my website. I am sending the download link in email, link is like it is currently accessible on direct link entry ,but i want it to work only when email link is clicked and I know this can be done by checking the session variables but problem is that i do not have any login modules.
2条回答 默认 最新
donglu2761 2016-05-26 23:08关注You could create a special access token based on the client's IP if they have to download it within the same session.
e.g.
$downloadKey = md5($filename . '_' . $_SERVER['REMOTE_ADDR']); $_SESSION[$downloadKey] = $downloadKey; // Include download link with key=$downloadKeyThen the PHP code that handles the download of the ZIP can re-hash the client IP and filename requested to see if it matches the session value. If they match then the download can proceed.
$request = md5($requestedFilename . '_' . $_SERVER['REMOTE_ADDR']); if (isset($_SESSION[$request]) && file_exists($requestedFilename)) { { // stream file unset($_SESSION[$request]); } else { // 401 unauthorized }This is assuming the zip file is not visible from the web already and that you are opening and streaming it from a PHP script.
本回答被题主选为最佳回答 , 对您是否有帮助呢?解决 无用评论 打赏举报
分享
- 2016-05-26 22:02回答 2 已采纳 You could create a special access token based on the client's IP if they have to download it withi
- 2018-03-09 11:32回答 1 已采纳 I ultimately found my solution here: Similar to the solution given there, I used the class from p
- 2016-05-10 10:05回答 1 已采纳 this seems to solve the problem: //clean all levels of output buffering while (ob_get_level()) {
- 2021-03-23 15:30太閤秀吉的博客 防止盗链:原理:当服务器要我们下载文件的时候,我们会拿到一个链接,然后我们通过这个链接找到这个文件,然后将它下载下来。那么也就是说这个链接必须要有的,那么如何防止盗链呢?那就是给你的链接并不是真正的...
- 2019-02-26 18:48回答 1 已采纳 Turned out I was right, the problem was the variable $file which wasn't correct as the script wasn
- 2017-02-16 08:15回答 2 已采纳 The problem was. I made an array into an array. So it didn't get the good path. $files = $_PO
- 2017-05-03 12:54回答 2 已采纳 you can check file size and contain using verious inbuilt php methods . read from here Also can c
- 2021-04-12 23:28Chionol的博客 一开始使用php调用命令行来执行压缩,后来发现php有ZipArchive类库实现了文件的压缩与解压缩 //递归移动文件到当前目录public function moveZipFiles($path,$aimpath) //把path里的所有文件夹里的文件都移动到path层...
- 2016-05-11 13:35回答 2 已采纳 Try with "zip -a -r ..." instead of "zip a -r ..." --- EDIT --- Reading the comment of Mark
- 2017-11-27 13:06回答 1 已采纳 Yes you can download multiple text files as single zip file using php ZipArchive class. This is sa
- 2014-06-26 16:51回答 1 已采纳 Please check file permissions. Is the directory read-only? If the directory is read-only, pleas
- 2021-04-13 00:10weixin_39595271的博客 断点下载的原理:http请求头添加Range参数告诉文件服务器端需要的字节范围例如1个文本文件的字节为1000,第一次请求Range: bytes=0-500第二次请求Range: ...以下是我封装的php下载远程文件,可以通过命令行执行,也...
- 2016-03-17 13:30回答 2 已采纳 Simply change: $zip->addFile($file_path.$files,$files); into: $zip->addFile($file_path.$
- 2021-03-24 12:05钢构汇的博客 php实现下载并修改文件名称的方法:首先设置下载地址为“/download....推荐:《PHP视频教程》php下载文件时修改文件名下载地址:/download.php?controller=down_file&file=1.zip然后在Controller里控制输出名就...
- 2021-04-22 03:06李秋恒的博客 我遇到一些麻烦阻止mod_deflate跳进这个场景:... zip文件由CodeIgniter控制器提供(头文件读取文件)问题是,Apache总是将内容检测为php,因此下面的行将不会起作用,因为服务器假定ZIP文件是PHP文件.SetOutputFilter DE...
- 没有解决我的问题, 去提问
悬赏问题
- ¥15 南大pa1 小游戏没有界面,并且报了如下错误,尝试过换显卡驱动,但是好像不行
- ¥15 没有证书,nginx怎么反向代理到只能接受https的公网网站
- ¥50 成都蓉城足球俱乐部小程序抢票
- ¥15 yolov7训练自己的数据集
- ¥15 esp8266与51单片机连接问题(标签-单片机|关键词-串口)(相关搜索:51单片机|单片机|测试代码)
- ¥15 电力市场出清matlab yalmip kkt 双层优化问题
- ¥30 ros小车路径规划实现不了,如何解决?(操作系统-ubuntu)
- ¥20 matlab yalmip kkt 双层优化问题
- ¥15 如何在3D高斯飞溅的渲染的场景中获得一个可控的旋转物体
- ¥88 实在没有想法,需要个思路