c# - Retrieve external html file and securely display in browser -


i working on online publication subscription site. developed in asp.net mvc 1.

basically, user purchases magazine or newspaper , path publication becomes available them. however, catch 22 is, not allowed see filepath publication unsecured.

i've built function can retrieve publication , download without showing filepath user problem because publication html file needs other files , folders in same directory view magazine or newspaper.

i know might download entire directory folder, unreasonable can 200mb. thought maybe retrieving filepath , redirecting page load publication in iframe think security risk bit of knowledge of browsers can view source , filepath there.

if has suggestion of secure way retrieve html file , display in browser, appreciated. thanks.

easy! store secret urls in database table, , reference them id instead.

set new controller action follows:

public contentresult shownewspaper(long id) {     var mysecreturl = db.secreturls.where(k=>k.id == id).firstordefault(); // grab url entry database     string htmlcode = "";     if(mysecreturl != null) {          webclient client = new webclient();          htmlcode = client.downloadstring(mysecreturl.url);     }else{          htmlcode = "page not found!";     }     return content(htmlcode,"text/html"); }

so if call:

mysite.com/home/shownewspaper/5

this load html @ url stored in database record 5

you go step further , check see whether or not controller action called site (as opposed directly) checking referrer.

hope helps...

edit: store "authorised user id" in database record too, , check accessible if id matches logged in user id, prevent unauthorised access controller action , therefore magazine... if not, redirect them login screen 

return redirect("/myloginurl");

Comments

Post a Comment

Popular posts from this blog

linux - xterm copying to CLIPBOARD using copy-selection causes automatic updating of CLIPBOARD upon mouse selection -

i've tried various ways coerce xterm (versions 285 , 292) copy selection clipboard clipboard whenever press ctrl-shift-c. promising way far has been, in ~/.xresources, put this: xterm*vt100.translations: #override \ ctrl shift <keypress> c: copy-selection(clipboard) \n\ ctrl shift <keypress> v: insert-selection(clipboard) ctrl-shift-v works perfectly, copying has nuance... if restart xterm, highlighting text puts things in primary clipboard; expected, proper, default behavior. if hit ctrl-shift-c, copies current selection clipboard clipboard. the bug, however, if highlight text after first time pressed ctrl-shift-c, you'll see highlighting copies both primary and clipboard. cannot figure out how stop xterm updating clipboard upon selection... , doesn't make sense me in first place. i said, @ specific point in time, copy selection clipboard... yet starts updating automatically upon selection after doing once... anyone have workaround...
Read more

c++ - qgraphicsview horizontal scrolling always has a vertical delta -

Image
i've subclassed qgraphicsview custom canvas used in cad application. i've reimplemented qgraphicsview::wheelevent check keyboard modifiers control key and, if control key pressed, zoom. i'm trying implement horizontal scroll when user holds shift , uses wheel. the problem i'm having horizontal scrolling always scrolls 0.279. not huge problem, hugely annoying , points else being wrong. so, here questions: is right way implement horizontal scrolling? if not, is? how eliminate delta of 0.279? thanks in advance. code , sample output below void myview::zoom(int delta) { double factor = pow(1.2, delta/abs(delta)); this->scale(factor, factor); } void myview::scrollhorizontal(int level) { qpointf center = maptoscene(viewport()->rect().center()); qdebug() << "center: " << center.x() << ", " << center.y(); centeron(qpointf(center.x() - level, center.y())); } void myview::wheelevent(qwheeleve...
Read more