Can I create url with a dynamic validity time

TheGU / mod-auth-token

This module uses token based authentication to secure downloads and prevent deep-linking. Have your script or servlet generate a token to authenticate the download and let Apache handle the file transfer without having to pipe it through a script for security.

Apache License 2.0

0 stars 0 forks source link

Can I create url with a dynamic validity time #21

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago

Hello.

I want to create some protected url but i would like to manage the access time 
with a PHP Script.

It's possible ?

Thx and sorry for my english but I'm french :=).

Original issue reported on code.google.com by cedric.c...@gmail.com on 17 Jun 2011 at 2:53

GoogleCodeExporter commented 9 years ago

Passing the time validity  from a generated link is not possible because you 
can't trust the client, and if you are encoding a variable int (e.g : the time 
) you can NOT reencode on the other side without passing some flag  in clear. 
That would be a serious security breach.

Original comment by teixeira...@gmail.com on 24 May 2012 at 7:26

Changed state: Invalid

GoogleCodeExporter commented 9 years ago

By the way I'm french too ;)

Original comment by teixeira...@gmail.com on 24 May 2012 at 7:26