PHP: How can I block direct URL access to a file, but still allow it to be downloaded by logged in users?

by

Into folder members create new folder files, move here all your songs, create new .htaccess file and add the following lines:

Order Deny,Allow
Deny from all

Into folder members create file get_song.php and add the following code:

if( !empty( $_GET['name'] ) )
{
  // check if user is logged    
  if( is_logged() )
  {
    $song_name = preg_replace( '#[^-\w]#', '', $_GET['name'] );
    $song_file = "{$_SERVER['DOCUMENT_ROOT']}/members/files/{$song_name}.mp3";
    if( file_exists( $song_file ) )
    {
      header( 'Cache-Control: public' );
      header( 'Content-Description: File Transfer' );
      header( "Content-Disposition: attachment; filename={$song_file}" );
      header( 'Content-Type: application/mp3' );
      header( 'Content-Transfer-Encoding: binary' );
      readfile( $song_file );
      exit;
    }
  }
}
die( "ERROR: invalid song or you don't have permissions to download it." );

And now, you can use this URL to get the song file:
http://mysite.com/members/get_song.php?name=my-song-name

More Related Contents:

  1. URL rewrite with .htaccess for wildcard domain
  2. Need assistance with regards to htaccess
  3. URL Redirect / URL Masking [closed]
  4. URL rewriting with PHP
  5. CodeIgniter removing index.php from url
  6. How to hide config files from direct access?
  7. HTTP authentication logout via PHP
  8. Htaccess: add/remove trailing slash from URL
  9. How to check whether mod_rewrite is enable on server?
  10. Remove index.php From URL – Codeigniter 2
  11. .htaccess rewrite GET variables
  12. How to hide .php extension in .htaccess [duplicate]
  13. how to change php version in htaccess in server
  14. How to set upload_max_filesize in .htaccess?
  15. .htaccess issues: No input file specified
  16. Secure files for download
  17. How can I use .htaccess to hide .php URL extensions?
  18. Request Entity Too Large PHP
  19. Laravel 5 not finding css files
  20. .htaccess for cakephp
  21. Directory index forbidden by Options directive
  22. Changing the root folder via .htaccess
  23. PHP cookie problem – www or without www
  24. laravel trailing Slashes redirect to localhost
  25. how to redirect domain according to country IP address
  26. how to hide the actual download folder location
  27. Forbidden Error When Submitting Simple PHP Form
  28. Role Based Access Control
  29. Avoid public folder of laravel and open directly the root in web server
  30. .htaccess – Redirect subdomain to folder

Leave a Comment