_OwNeD.YoU_ Posted March 17, 2009 Share Posted March 17, 2009 Hi guys, What is the best way to mask the url where a file is being downloaded from, but the tricky part is i want the files to open in pdf viewer thanks guys, brandon Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/ Share on other sites More sharing options...
JonnoTheDev Posted March 17, 2009 Share Posted March 17, 2009 Dont use a url for the file. Grab the file from its location and use headers to display it. Place the code in a file i.e. pdf.php then this will always be the url yourdomain.com/pdf.php Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/#findComment-786905 Share on other sites More sharing options...
Psycho Posted March 17, 2009 Share Posted March 17, 2009 Well, the actual solution will depend upon "how" you want to access the files. Are the file names/paths stored in a database and you will pass an ID to find the file details int he database. Or perhaps you will simply pass the file name without the path to the file so the user can't directly link to the file. Here's an example //Get the file name and path in some manner //e.g. pass an id ot name to the page such as //http://www.mydomain.com/showpdf.php?id=4 //Generate a variable with the full path and name to the file on the server $filename = "/pdffiles/mypdf.pdf"; if (file_exists ($filename)) { header("Cache-Control: public"); header("Content-Description: File Transfer"); header("Content-Type: application/pdf"); header("Content-Transfer-Encoding: binary"); header('Content-Length: '. filesize($filename)); readfile($filename); } else { echo "File not found"; } Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/#findComment-786945 Share on other sites More sharing options...
iarp Posted March 17, 2009 Share Posted March 17, 2009 I use this script, it allows me to link a file by eithor http://www.someo ne-else-s erver.com/file.exe or /my/servers/document/root/file.exe or .pdf or w/e you want. Info: $file = the files location so eithor http://.. or /document/root/... $name is the output name you want it to have. <?php function output_file($file, $name, $mime_type='') { /* This function takes a path to a file to output ($file), the filename that the browser will see ($name) and the MIME type of the file ($mime_type, optional). If you want to do something on download abort/finish, register_shutdown_function('function_name'); */ //echo "<br><br>file: $file <br>name: $name <br> mime: $mime_type<br><br>"; //if(!is_readable($file)) die('File not found or inaccessible!'); $size = filesize($file); $name = rawurldecode($name); /* Figure out the MIME type (if not specified) */ $known_mime_types=array( "pdf" => "application/pdf", "txt" => "text/plain", "html" => "text/html", "htm" => "text/html", "exe" => "application/octet-stream", "zip" => "application/zip", "doc" => "application/msword", "xls" => "application/vnd.ms-excel", "ppt" => "application/vnd.ms-powerpoint", "gif" => "image/gif", "png" => "image/png", "jpeg"=> "image/jpg", "jpg" => "image/jpg", "php" => "text/plain", "rtf" => "application/msword" ); if($mime_type==''){ $file_extension = strtolower(substr(strrchr($file,"."),1)); if(array_key_exists($file_extension, $known_mime_types)){ $mime_type=$known_mime_types[$file_extension]; } else { $mime_type="application/force-download"; }; }; @ob_end_clean(); //turn off output buffering to decrease cpu usage // required for IE, otherwise Content-Disposition may be ignored if(ini_get('zlib.output_compression')) ini_set('zlib.output_compression', 'Off'); header('Content-Type: ' . $mime_type); header('Content-Disposition: attachment; filename="'.$name.'"'); header("Content-Transfer-Encoding: binary"); header('Accept-Ranges: bytes'); /* The three lines below basically make the download non-cacheable */ header("Cache-control: private"); header('Pragma: private'); header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); // multipart-download and download resuming support if(isset($_SERVER['HTTP_RANGE'])) { list($a, $range) = explode("=",$_SERVER['HTTP_RANGE'],2); list($range) = explode(",",$range,2); list($range, $range_end) = explode("-", $range); $range=intval($range); if(!$range_end) { $range_end=$size-1; } else { $range_end=intval($range_end); } $new_length = $range_end-$range+1; header("HTTP/1.1 206 Partial Content"); header("Content-Length: $new_length"); header("Content-Range: bytes $range-$range_end/$size"); } else { $new_length=$size; header("Content-Length: ".$size); } /* output the file itself */ $chunksize = 1*(1024*1024); //you may want to change this $bytes_send = 0; if ($file = fopen($file, 'r')) { if(isset($_SERVER['HTTP_RANGE'])) fseek($file, $range); while(!feof($file) && (!connection_aborted()) && ($bytes_send<$new_length) ) { $buffer = fread($file, $chunksize); print($buffer); //echo($buffer); // is also possible flush(); $bytes_send += strlen($buffer); } fclose($file); } else die('Error - can not open file.'); die(); } ?> Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/#findComment-786960 Share on other sites More sharing options...
Psycho Posted March 17, 2009 Share Posted March 17, 2009 Note iarp's script will provide a dialog to Open/Save/Cancel the file instead of attempting to directly open the file (as requested by the OP). That script can be used to attempt to open the file automatically by commenting out this line: header('Content-Disposition: attachment; filename="'.$name.'"') Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/#findComment-787108 Share on other sites More sharing options...
iarp Posted March 17, 2009 Share Posted March 17, 2009 I find that PDF's still open in the browser window anyways if i just click open, leaving other files the option open to save or open as well. Quote Link to comment https://forums.phpfreaks.com/topic/149826-hiding-where-your-downloading-the-file-from/#findComment-787129 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.