Monday, August 31, 2009

Re: File Uploads: What security-issues I have to take care of?

Regarding the mimetype, it allows all mimetypes listed in the config
folder. If you want to restrict the type, use the file validation
behavior.

For the second part of your question. You would do a normal controller
action setup like /files/download/1 and then use the media view and
your own logic to determine the file.

http://book.cakephp.org/view/489/Media-Views
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to cake-php+unsubscribe@googlegroups.com
For more options, visit this group at http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---

No comments: