well, if it isn't a very confidential issue, you might upload the files to the same public upload directory and move the file later how do you think to serve the file once it is requested by an authenticated user? you will have to make it some how accessible via http or https, I think there will be always a time window when a file becomes vulnerable I'm not an expert, but I would like to know if you figure it out some how
On Jun 6, 7:08 am, Peter Bowyer <[EMAIL PROTECTED]> wrote: > Is it possible to have two upload directories? For most files uploaded > having them in web/uploads is fine as I don't mind who sees them; > however some files must only be accessible by authenticated users, and > i would prefer them to be located outside the web root. > > I'm planning to set another config variable (rather than using > sfConfig::get('sf_upload_dir')) for the out-of-webroot upload > directory and then write an action that controls viewing of these > files - but is there an in-built approach or more Symfonic way? > > Thanks, > Peter --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to symfony-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en -~----------~----~----~----~------~----~------~--~---