[TYPO3-dev] Filemount / Filelink-Concept

[Michael Stucki]

"Eduard Müller (ISB)" wrote:

> Brice Bernard schrieb:
>> I thought maybe it could be interesting to make some kind of extension
>> wich could generate on the fly .htpasswd file based on the group
>> permissions?
> 
> Yes, i've got that idea, too. The following ext. exists using .htaccess:
> 
> - Secure Directory (kw_secdir)
>   Adds directory access restrictions in filelist module via htaccess
> 
> - AuthProtectedURL - cwd_authprotectedurl
>   Authenticate against Protected URL (i.E. protected by basic
>   authentication with .htaccess)

Bad idea! TYPO3 already has an authentication system, don't confuse your
users with additional passwords.

I have worked on a full rewrite of the dir_listing extension to make it work
using a download script. When using it, you can simply deny direct access
to these directories using this part in .htaccess:

| order deny,allow
| deny from all

This is no big news compared to the existing download extensions. The real
news is that it is able to pass these download links to the indexed_search
indexer.

This allows you to index PDF files, protected by a download script and still
respecting the fe_group permissions for the frontend plugin.

This is however just the frontend part - in the backend you still have to
enter such a path manually. Browsing external mounts would be nice, but it
can be done in a separate step (= by someone else).

> But keep in mind: someone could have a network with read only shares, so
> you are not able to create files or directories on that "filemounts".

TYPO3 already checks the permissions before it offers create/edit options,
so that's no problem.

- michael
-- 
Use a newsreader! Check out
http://typo3.org/community/mailing-lists/use-a-news-reader/