Mel wrote:
on my web site you will have to login to see downloads etc.
However once the user logs in the file url is exposed and the end user can
bookmark the downloadable file and pass it on to others
is there a way to avoid this ?
Yes.
Do you run your own server?
What server is it?
On my church site [1] I have a load of member-only pages. I use PHP
authentication [2], with each protected page checking the authentication
and backing out if not authorized. This means I don't need to set
cookies on the users' machines.
Documents are done with a PHP script that checks authorization: if OK,
it sends the appropriate headers then reads the document contents from a
separate directory that isn't part of the website directory structure.
[1]
http://billericaybaptist.net/
[2]
http://www.php.net/manual/en/features.http-auth.php
--
Mark.