Jump to content

Making file available for download.

Love2c0de

By Love2c0de
in PHP Coding Help

 Share

Recommended Posts

Love2c0de Regular Member

Love2c0de

Posted
Posted

Hello, I am creating a site which let's users download gaming demo files such as CS, CS:CZ. I need some guidance on the download.php file. I need help with retrieving the actual file contents.

 

Here is my code:

<?php
$file = $_GET['id'];
$name = $_GET['name'];

require("connect.php");

$qry = mysql_query("SELECT name FROM demos WHERE id=$file");
$row = mysql_fetch_array($qry);

if(file_exists("files/{$row['name']}")){
     
  header("Content-type: application/octet-stream");
  header("Content-Disposition: attachment; filename=$name");
  
}
else{
     echo "File does not exist.";
}
?>

 

This is bringing up the download save/open box, but the file is empty. (0kb).

 

I have read about fread() etc but I cannot understand how to do it.

 

I was looking for some guidance and help on achieving this.

 

Kind Regards,

 

BuNgLe.

Link to comment
https://forums.phpfreaks.com/topic/263802-making-file-available-for-download/
Share on other sites
scootstah Member

scootstah

Posted
Posted

You're on the right track, but you need to output the contents of the file to the browser.

 

So after the two header() calls, use readfile to output the file.

 

header("Content-type: application/octet-stream");
header("Content-Disposition: attachment; filename=$name");

readfile('files/' . $row['name']);

Love2c0de Regular Member

Love2c0de

Posted
  • Author
Posted

Thank you very much for your reply. I added the line of code you suggested and it works perfectly now.

 

I know I have to validate the input values for injections etc but is there anything else you would secure better looking at my code?

 

Regards,

 

BuNgLe

Love2c0de Regular Member

Love2c0de

Posted
  • Author
Posted

The code from the link:

 
$file = str_replace('../', '', $_GET['file']);
   if(isset($file))
   {
       include("pages/$file");
   }
   else
   {
       include("index.php");
   }

 

my download.php page looks like this now:

 
<?php
$file = $_GET['id'];
$name = $_GET['name'];
require("connect.php");
$qry = mysql_query("SELECT name FROM demos WHERE id=$file");
$row = mysql_fetch_array($qry);
if(file_exists("files/$name")){
     
  header("Content-type: application/octet-stream");  
  header("Content-Disposition: attachment; filename=$name");  
  
  readfile('files/' . $row['name']);
}
else{
     echo "File does not exist.";
}
?>

 

Should I put the website example code at the top of my download.php file before I start connecting to the db and selecting files and all the other stuff?

 

Regarding the urlencoding, would I do that when I display the actual links? For example my code which I have to display the links:

 

while($row = mysql_fetch_array($qry)){
             echo "<a href='download.php?id={$row['id']}&name={$row['name']}'>{$row['name']}</a>" . " " . $row['description'] . " " . $row['date'];
             echo "<br />";
         }

 

Would I encode that anchor url? The website doesn't really go into much depth about it and I've searched google but all the examples that come up are really not related directly to my issue.

 

Thanks for your time.

 

Regards,

 

BuNgLe

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.