Tuesday, December 14, 2004, 1:33:07 PM, you wrote: r> Why don't you take the PHP out of the loop entirely? r> Make a dir into the Apache area with a custom .htaccess r> (with usernames/passwords, etc) and put the required files there.
Then the files have to be within the web root and it'll only take one person to share out the username/password. It needs controlling as to who can download and how many times. PHP has to be in the loop somewhere (although granted, not for the actual file delivery).
How's about using PHP to update a database of username/password pairs and then using something like apache mod_auth_mysql to authenticate a user logging in against the database?
You could then write a MySQL procedure to automatically update a field showing that that user has logged in X times and use cron to periodically remove users (or change their group etc) who have used up their logins, or parse the server logs periodically to extract the same information.
James.
-- James Stewart : Freelance Web Developer Work : http://jystewart.net Play : http://james.anthropiccollective.org
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
