Project

General

Profile

Feature #1841

Lighttpd mod_secdownload - option to access the content of the folders

Added by tmmous almost 11 years ago. Updated about 3 years ago.

Status:
Missing Feedback
Priority:
Normal
Assignee:
-
Category:
mod_secdownload
Target version:
Start date:
2008-12-10
Due date:
% Done:

0%

Estimated time:
Missing in 1.5.x:

Description

It would be very nice to have a feature in mod_secdownload module that would allow access to the contents of the folder via secdownload-obfuscated URL.

The sec_download module allows to hide individual files by obfuscating the url, or individual folder. But it doesn't if you want to work with entire content of a folder, its not possible to access the files inside the folder via the parent folder "obfuscated" URL, because md5 checksum is created with the use of folder's exact name and when you are trying to access the files within that folder they are forbidden.

Maybe there is some setting or way to make the files inside folder accessible in secdownload module, that I'm not aware of?/
-This is something very useful to add!
-I think it shouldn't be difficult to change the code for the condition where it checks the MD5-checksum against the URI of files.

Cheers!

History

#1

Updated by icy almost 11 years ago

  • Assignee deleted (icy)
  • Priority changed from High to Normal

a) Why did you assign this ticket to me? Don't assign tickets to somebody unless you are sure he is the one that is responsible for that task.
b) Why did you set priority to high? High priority is for stuff that is important. This feature is not very important. Don't set priority to > normal unless you have reason to. Doing otherwise will not get us to implement it faster - probably the opposite.
c) You can use a fcgi/scgi/cgi script to do the directory listing and in that generate links that work with mod_secdownload

#2

Updated by tmmous almost 11 years ago

Icy,
Thanks for the response!
Apologize for inappropriately issuing the ticket to you, I thought it's required to assign someone when creating a ticket and I just liked the name 'icy', sorry!
I will look into fcgi/scgi/cgi script to resolve the issue.

icy wrote:

a) Why did you assign this ticket to me? Don't assign tickets to somebody unless you are sure he is the one that is responsible for that task.
b) Why did you set priority to high? High priority is for stuff that is important. This feature is not very important. Don't set priority to > normal unless you have reason to. Doing otherwise will not get us to implement it faster - probably the opposite.
c) You can use a fcgi/scgi/cgi script to do the directory listing and in that generate links that work with mod_secdownload

#3

Updated by gstrauss about 3 years ago

  • Status changed from New to Missing Feedback

icy's suggested solution:

c) You can use a fcgi/scgi/cgi script to do the directory listing and in that generate links that work with mod_secdownload

Also available in: Atom