Protect Against Direct URL Access. | WordPress.org

frankinkiru
(@frankinkiru)

13 years, 7 months ago

Our Website has a form that we require users to fill out in order to download our white paper.

http://www.inkiru.com/form-index/download-white-paper/

The problem is, once someone fills out the form, the URL for the white paper (http://www.inkiru.com/wp-content/uploads/2012/11/Predictive%20Analytics%20White%20Paper.pdf)
can be directly typed into any search bar to gain access.

Is there a way to protect against this?

Viewing 1 replies (of 1 total)

michael.mariart
(@michaelmariart)

13 years, 7 months ago

There is, but it’s a lot more complicated then simple uploading a file and linking to it.

You can either do this in your theme, or in a new plugin that you develop. The choice is yours.

You need to have the file stored somewhere that is not accessible by the public. Where it can be placed is different depending on your hosting company and server, so it’s up to you to find out where that is. When you have that you need to set up a script that will check for what referrer it is, where the request has come from and whatever other security measures that you want to put in place. if these are all correct you can output the file form its location using file_get_contents() or another function like that.

Viewing 1 replies (of 1 total)

The topic ‘Protect Against Direct URL Access.’ is closed to new replies.

In: Fixing WordPress
1 reply
2 participants
Last reply from: michael.mariart
Last activity: 13 years, 7 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics