 | Start a set with this search |
 | Include this search in one of my sets |
 | Exclude this search from one of my sets |
 | Permalink to these results Paste this link in email or IM: |
 | Atom feed for tracking future search results Paste this URL into your reader: |
5 messages in ru.sysoev.nginxRe: Hi, mod secdownload| From | Sent On | Attachments |
|---|---|---|
| Nati Abargel | Jun 15, 2007 10:09 am | |
| Igor Sysoev | Jun 15, 2007 10:15 am | |
| Bedros Hanounik | Jun 15, 2007 11:18 am | |
| Kevin Williams | Jun 15, 2007 11:43 am | |
| Igor Sysoev | Jun 15, 2007 11:51 am |
| Permalink for this message Paste this link in email or IM: |
| Permalink for this thread Paste this link in email or IM: |
| Atom feed for this thread Paste this URL into your reader: |
| Subject: | Re: Hi, mod secdownload | Actions... |
|---|---|---|
| From: | Kevin Williams (kevw...@public.gmane.org) | |
| Date: | Jun 15, 2007 11:43:55 am | |
| List: | ru.sysoev.nginx | |
I coded up my own Mongrel handler to do this for my Rails apps, but it would be much better if nginx had it.
On 6/15/07, Bedros Hanounik <2bed...@public.gmane.org>
wrote:
I requested this feature before, and the guy at nginx wiki was kind enough to put it on the feature request list.
http://wiki.codemongers.com/NginxFeatureRequests
however, I still think it's worth it to add a feature like secdownload to nginx; because X-Accel-Redirect does not allow me to create temp link to a static file, which expires after a certain time.
X-Accel-redirect gives me some control to check user authenticity before serving the static file (redirecting); my problem with that is I want to decouple the web server (checking authenticity) from serving static files. with lighttpd secdownload feature, the static file server and web server are on different machines; I check the authenticity of the requester once, create the temp link which expires later, then I don't have to worry about checking the requester authenticity everytime the file is requested.
I'm planning on building a website (using django) with a sophisticated access control, and I'm leaning toward lighttpd just because of the flexibility secdownload feature gives me. However, I really like the configuration of nginx; it's easy to read and powerful, even though I'm expert in either lighttpd nor in nginx.
Regards,
-Bedros
On 6/15/07, Igor Sysoev <is-G...@public.gmane.org> wrote:
On Fri, Jun 15, 2007 at 08:09:48PM +0300, Nati Abargel wrote:
nginx have mod secdownload (like lighttpd)? if yes i happy to learn more about it.
No, nginx supports X-Accel-Redirect header from backend:
http://blog.kovyrin.net/2006/11/01/nginx-x-accel-redirect-php-rails/ http://wiki.codemongers.com/NginxXSendfile
-- Igor Sysoev http://sysoev.ru/en/
-- Cheers,
Kevin Williams http://www.almostserio.us/
"If you don't think carefully, you might think that programming is just typing statements in a programming language." - Ward Cunningham "Any sufficiently advanced technology is indistinguishable from Magic." - Arthur C. Clarke