[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Future of Web Application in Gambas
[Thread Prev] | [Thread Next]
- Subject: Re: Future of Web Application in Gambas
- From: Lee <t.lee.davidson@xxxxxxxxx>
- Date: Tue, 22 Apr 2025 10:06:35 -0400
- To: user@xxxxxxxxxxxxxxxxxxxxxx
On 4/21/25 4:09 PM, Linus wrote:
Ok so apparently I was wrong. So, could it be possible to improve this component with little features ? 1 - Could it be possible to set the « .public » folder, normally managed by the internal libthttpd Web Server, as option in command line Ex: add a GB_HTTPD_PUBDIR=<path to .public> to the gbr3 command Because if the project is started by his compiled *.gambas executable, the « .public » directory is not anymore writable and I need write into during the usage of the Web Application 2 - Could it be possible to have a restricted Directory, available by the libthttpd Web Server, ONLY if a session is VALID. Like that the libthttpd will be able to deserve normal .public files, and when a session is VALID, the libhttptd server will be able to deserver also secret/securised data. Just to explain, in my last Web Application project, once the user is authenticated, he can upload files to the application, through the web Browser. Once the file is received by the Web Application, it is stored in a directory, outside the « .public » because if it is stored into the « .public » directory, the file will available, potentially, for all people without authentication. This is due to the fact the libthttpd Web server deserver all files into « .public », simply when requested by the browser, that is normal in my point of view. So to permit the download by the Browser (initiated by the user) of restricted files, when requested, I create a temporary symbolic link in the « .public » pointing to the original file, available only few secondes, just the time for the user to download it. Once the file has been downloaded (delay in seconds), the symbolic link is removed, denying totally the possibility for anyone to download it without authentication.Maybe I’m in special case but I think Web Application that allow to send/receive file are common today.Thank you Olivier
I am confused, Olivier. You talk about the internal libthttpd web server. But, isn't that intended to be used only for debugging? Whereas, a Web Application, in production use, should be run on an actual web server like Apache, Nginx, or Lighttpd. What am I missing?
-- Lee --- Gambas User List Netiquette [https://gambaswiki.org/wiki/doc/netiquette] ---- --- Gambas User List Archive [https://lists.gambas-basic.org/archive/user] ----
| Re: Future of Web Application in Gambas | Benoît Minisini <benoit.minisini@xxxxxxxxxxxxxxxx> |
| Future of Web Application in Gambas | Linus <olivier.cruilles@xxxxxxxx> |
| Re: Future of Web Application in Gambas | Benoît Minisini <benoit.minisini@xxxxxxxxxxxxxxxx> |
| Re: Future of Web Application in Gambas | Linus <olivier.cruilles@xxxxxxxx> |