[TYPO3-dev] Filemount / Filelink-Concept
Michael Stucki
michael at typo3.org
Tue Jan 10 16:53:00 CET 2006
"Eduard Müller (ISB)" wrote:
> Brice Bernard schrieb:
>> I thought maybe it could be interesting to make some kind of extension
>> wich could generate on the fly .htpasswd file based on the group
>> permissions?
>
> Yes, i've got that idea, too. The following ext. exists using .htaccess:
>
> - Secure Directory (kw_secdir)
> Adds directory access restrictions in filelist module via htaccess
>
> - AuthProtectedURL - cwd_authprotectedurl
> Authenticate against Protected URL (i.E. protected by basic
> authentication with .htaccess)
Bad idea! TYPO3 already has an authentication system, don't confuse your
users with additional passwords.
I have worked on a full rewrite of the dir_listing extension to make it work
using a download script. When using it, you can simply deny direct access
to these directories using this part in .htaccess:
| order deny,allow
| deny from all
This is no big news compared to the existing download extensions. The real
news is that it is able to pass these download links to the indexed_search
indexer.
This allows you to index PDF files, protected by a download script and still
respecting the fe_group permissions for the frontend plugin.
This is however just the frontend part - in the backend you still have to
enter such a path manually. Browsing external mounts would be nice, but it
can be done in a separate step (= by someone else).
> But keep in mind: someone could have a network with read only shares, so
> you are not able to create files or directories on that "filemounts".
TYPO3 already checks the permissions before it offers create/edit options,
so that's no problem.
- michael
--
Use a newsreader! Check out
http://typo3.org/community/mailing-lists/use-a-news-reader/
More information about the TYPO3-dev
mailing list