Hi, I'm testing CKFinder in my environment.
About access control, I can't see how CKFinder will enforce "view" access control to only registered users:
When I click on "view" file (in the context menu) it just shows the images directing the user to the url of the images in the webserver tree.
Doing this, the access control can only be implemented on the server and no PHP is involved. A non user can guess the url and see the images as well.
Probably I'm missing something, can you give me a hint on how it is supposed to work?
Thanks Paolo
About access control, I can't see how CKFinder will enforce "view" access control to only registered users:
When I click on "view" file (in the context menu) it just shows the images directing the user to the url of the images in the webserver tree.
Doing this, the access control can only be implemented on the server and no PHP is involved. A non user can guess the url and see the images as well.
Probably I'm missing something, can you give me a hint on how it is supposed to work?
Thanks Paolo
Re: Access control for viewing pictures
Wiktor Walc
CTO, CKSource - http://cksource.com
--
Follow CKEditor on: Twitter | Facebook | Google+
Re: Access control for viewing pictures
Thank you for the suggestions. I like the last one.I'll let you know how I'm doing.
/Paolo
Re: Access control for viewing pictures
background-image: url('http://www.example.com/ckfinder/core/connector/php/connector.php?command=Thumbnail&type=Files¤tFolder=%2Fpath%2Fto%2Fmy%2F&langCode=da&hash=6d1ea1cb358e4e22&FileName=file.jpg');background-image: url('/najub/viewer/?file=_thumbs/path/to/my/file.jpg?hash=6d1ea1cb358e4e22');Re: Access control for viewing pictures
Thx, Paolo
Re: Access control for viewing pictures
Wiktor Walc
CTO, CKSource - http://cksource.com
--
Follow CKEditor on: Twitter | Facebook | Google+
Re: Access control for viewing pictures
Re: Access control for viewing pictures
Wiktor Walc
CTO, CKSource - http://cksource.com
--
Follow CKEditor on: Twitter | Facebook | Google+