Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Working in an asp.net 2.0 (VB) environment, I already have code that can generate an excel file from a database for a particular ‘user’ of the website. I want to be able to launch this report generator on demand, and then after the file has been generated, allow the user to download this file.
How can I do this securely, and not just dumping the files off in some publicly readable directory?
Note: Related to this question, but the part I’m really interested in was never answered.
Instead of putting it in a public directory you could create an HTTP Handler which allows you to do authorization.
You can create an handler either by compiling and registering in web.config or by creating an ashx page. Then your page would authorize the user, and then write the contents to the response.
If you need session state be sure to inherit from IRequiresSessionState.
Edit
I’m a C# guy so here’s a sample in that: