File management that prevents unauthorized downloads/access

[tyman00]

Hello all,

I have a Form that is creating separate CSV's for each submission. I want to place these CSV's in a directory (easily done).

The hard part is finding an app that will allow access to download and delete the file off of the server. I know the FileManager is available. The problem is I can still access the CSV without having to be logged in to the admin panel, assuming I know the path and the filename.

Is there an app (doesn't necessarily have to be CMSMS compatible) that will allow me to download/delete files in a directory, but will prevent a download if they put the direct path in for the file (ex. www.mysite.com/directory/myFile.csv)?

[calguy1000]

well, direct urls like that bypass the app.  You'd have to protect that directory with a .htaccess file
but the .htaccess file still has to allow the local host to access the directory.

[tyman00]

I tried the .htaccess and found that it wouldn't allow the app to have access. I never thought of giving access to the localhost.

What type of allow should I give it. Should I use the actual IP of the machine or 127.0.0.1?