Hi Monks.

I'm building an online document management system using Perl & MySQL. I plan to store uploaded files to a directory on the server. All of the metadata about these files will be stored in a DB table (including the file paths pointing to the files). A Perl script governs the process. Target server is Apache.

I'd like to restrict access to the directory where the files will be stored. I'm guessing the best way to do this is via .htaccess. Please correct me if I'm wrong.

Assuming I set this up via .htaccess, how do I still permit my Perl script to allow users to upload files to the server? In other words, I'd like to permit the script to upload files at the user's request while simultaneously preventing unscrupulous users from accessing (viewing) the files directly simply by keying in the URL. The data is sensitive.

Thank you!

---

---

Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!

Titles consisting of a single word are discouraged, and in most cases are disallowed outright.

Read Where should I post X? if you're not absolutely sure you're posting in the right place.

Please read these before you post! —

• How do I compose an effective node title?
• How do I post a question effectively?
• Markup in the Monastery

Posts may use any of the Perl Monks Approved HTML tags:

a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr

You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)

	For:		Use:
	&		&
	<		&lt;
	>		&gt;
	[		&#91;
	]		&#93;

Link using PerlMonks shortcuts! What shortcuts can I use for linking?

See Writeup Formatting Tips and other pages linked from there for more info.