Need Clarification about Secure Settings

  • pleasantsa

    (@pleasantsa)


    12 years, 8 months ago

    Is there a combination of settings I can use in GDE that will allow the following:

    1. Only logged in members of my site can view, copy/paste, download, and print documents (mostly PDFs)
    2. Visitors not logged in cannot view or download the documents
    3. It is okay if logged in users can view the doc URL while viewing or downloading the file.

    My site is public with a members only section for registered users. Access to my pages is controlled with a user-role/permissions plugin and I was using a plugin called Omni Secure Files (OSF) to prevent direct URL access to documents attached to the restricted pages. OSF uploads docs to a secure directory and provides a link URL such as-

    http://mysiteurl.com/wp-admin/admin-ajax.php?action=secure_files&do=download&id=75

    Unfortunately, my organization has MANY elderly members who have A LOT of trouble viewing and downloading PDFs, so I’ve turned to GDE. I’m clear that I cannot use files uploaded using OSF with GDE because they are not publicly accessible. What I’m not sure about is whether GDE can provide the conditions listed above and if so, what settings I should use?

    http://ww.wp.xz.cn/plugins/google-document-embedder/

Viewing 1 replies (of 1 total)
  • k3davis

    (@k3davis)

    12 years, 8 months ago

    Natively GDE can restrict certain actions based on whether or not the user is logged in:

    * Plugin configuration (obviously)
    * Showing the download link
    * Allowing “full screen view”

    Out of box GDE doesn’t control the state of the viewer based on whether or not the user is logged in, other than the option of removing the “full screen” toolbar button. So if I can boil down what you’re asking for, you want logged in users to have normal access to the plugin (you can control the details via the settings), and logged out users not to be able to see anything. Is that correct?

    If so, then you should be able to use GDE, but you’ll have to wrap your posts or your GDE shortcode itself in some other container that restricts based on whether or not the user is logged in – such a facility could very well be included in your particular “members only” plugin already. If not, I’m sure it could be found. But natively, the viewer is displayed regardless of logged-in state; only the functions listed above are controllable based on logged-in state without assistance from another plugin.

    Let me know if I’ve misunderstood or if I can clarify anything.

    Thanks,

    Kevin

Viewing 1 replies (of 1 total)

The topic ‘Need Clarification about Secure Settings’ is closed to new replies.