Skip to main content
P
Prashantgenial
Known Participant
August 5, 2009
Question

Byte serving pdf files:

  • August 5, 2009
  • 1 reply
  • 1925 views

Hi,

problem:
i have some pdf files outside the webroot and i have to serve those files to user as a fast web view.
Note: fast web view is a feature of IIS not coldfusion application server.

currently how i m doing this made a virtual directory to those pdf files folder and i redirect the user to the attachment
so the file serve by IIS itself.

however using this approach user can get the file if he knows the attachment file name. so this is a security concern.

can anyone suggest me any alternate solution for this security concern.

thanks
Prashant Gupta

Blog: http://chakdecoldfusion.blogspot.com/

    This topic has been closed for replies.

    1 reply

    M
    mack_
    Participating Frequently
    August 5, 2009

    This might be related to your problem:

    http://ckdake.com/category/tags/fast-web-view (it's the third result

    when googling for "fast web view").

    Mack

    P
    PrashantgenialAuthor
    Known Participant
    August 5, 2009

    Hi mack,

    thanks for the quick reply however this is not my problem.

    if i serve the pdf files using <cfcontent tag it takes time to load in the browser even if pdf file is marked for fast web view.

    so i choose that i create a virtual directory and redirect the user to that file.

    in this way IIS handle this request and since this is in-built feature of web server so user is

    able to see the pdf as fast web view.

    but my main security concern in this apporach is if user has file name then he can use the same url and get some other pdf file.

    however i appreciate your reply.

    thanks

    Prashant

    M
    mack_
    Participating Frequently
    August 5, 2009

    if i server the pdf files using <cfcontent tag it takes time to load

    in the browser even if pdf file is marked for fast web view.

    Did you read the link that I gave you ? Specifically the part about

    how fast web view works (hint: your CF code most likely doesn't

    support Request-Range header so fast web view is practically

    disabled)...

    Mack

    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices