ASP.Net security only works on files that pass through the ASP framework.  Links to documents do not - exposing a security hole if you want to keep those documents available only to authenticated users.

Here’s some simple code to stream back a file from a secure directory via aspx.

Private Sub Page_Load …
   Dim sFileName, sFilePath As String
   Try
      …
      Response.AddHeader(”Content-Disposition”, “filename=” + sFileName)
      Response.WriteFile(sFilePath)
   Catch ex As Exception
      Response.Write(ex.Message)
   End Try
End Sub

The AddHeader function ensures the correct file name appears in the download.

Feeds

blog   flickr   comments

Search

Recent Comments:

• Frey on Antidisestablishmentarianism …: this is clever, ive always wanted to know what it means, so i just...
  
  
• Chris Reeves on National’s Broadband plan: When is the tender finished for this? When are they looking to...
  
  
• Micah on iTunes/iPhoto Server, your time has come: I’ve been pining for this for over a year. Every once in a...
  
  
• Michael on iTunes/iPhoto Server, your time has come: Here’s how you do it with iTunes: OS X machine...
  
  
• jakesmum...uk on Greg Wiggle: anthony wiggle(blue)looks yummy yummy now though….
  
  
• Oliver on iTunes/iPhoto Server, your time has come: This would be exactly what I need - ability to run iTunes and...
  
  
• leslie j keeley on Tom Tom Club: have just had a big crash on my go 720 and can not get it going it seems to have no...
  
  
• StefanN on iTunes/iPhoto Server, your time has come: My last update should state ” Additional I have iPhoto...
  
  
• StefanN on iTunes/iPhoto Server, your time has come: I have the same issue as I have a 20″ iMac as central...
  
  
• huzurevi on Firefox3: Web Apps Game changer: Better to use .NET ClickOnce or Flash Apollo to build powerful...
  
  

Recent Trackbacks:

• zefamedia » Blog Archive » UX Industry Goes Loco on What does your customer do next?: there’s the Web2.0 factor...
  
  
• Pujji Like Gucci on End of chapter: It’s a Rodfest out there…
  
  
• Wood TV Stand on Cabinetisation: Rod Drury gt Cabinetisation
  
  
• Sam Stewart on Is there an Award for Winning Awards?: Xero Analysis - 2 year review
  
  
• Segway Face on Segway Face: won’t lie; we thought we had coined a new phrase.  Google quickly proved us wrong,...
  
  

Categories

• Apple
• Blogging
• Charts
• Communications
• Development
• Events
• Exporting
• Google
• Interesting
• Kids
• Laughs
• Microsoft
• Mobile
• Movies
• Music
• Notice
• Old-blog-archives
• Politics
• SaaS
• Starting a business
• TechBiz
• Technolust
• Travel
• Wellington
• WordPress
• Xero

Archives

• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007
• August 2007
• July 2007
• June 2007
• May 2007
• April 2007
• March 2007
• February 2007
• January 2007
• December 2006
• November 2006
• October 2006
• September 2006
• August 2006
• July 2006
• June 2006
• May 2006
• April 2006
• March 2006
• February 2006
• January 2006
• December 2005
• November 2005
• October 2005
• September 2005
• August 2005
• July 2005
• June 2005
• May 2005
• April 2005
• March 2005
• February 2005
• January 2005
• December 2004
• November 2004
• October 2004
• September 2004
• August 2004
• July 2004
• June 2004
• May 2004
• April 2004
• March 2004
• February 2004
• January 2004
• December 2003
• November 2003
• October 2003
• September 2003
• August 2003
• July 2003
• June 2003