Hi!
I am writing a web application which holds files for download.
The base is a MySQL database.
Only subscribed users are allowed to download the files.
Now my question:
Which is the best way to protect the files from download.
- .htaccess
- MySQL database
- $PHP_AUTH_USER & $PHP_AUTH_PW
- combinations of the 3
My problems are:
Dynamically addind new / customizing users for access.
Protecting files from direct typed URLs
Thanks a lot
