tags:

views:

145

answers:

3
+1  Q: 

Serving Files in Zend Framework MVC

What is the best practice when serving files from the Zend Framework MVC? These files have to be served from the MVC as they are protected.

I know you can read in the file and place it into the Response object but this seems like a bad practice as you would be reading the entire file into memory then serving it. Right now I usually do:

header('Content-type: image/jpeg');
fpassthru(fopen($path, 'rb'));
exit;

But this also doesn't seem right as I'm stopping the execution of the script. Any suggestions?

+1  A: 

You could try using the X-Sendfile header. It is supported by lighttpd and newer versions of apache. Basically the webserver will replace the output of the script with the file you specified. The downside being that it is specific to the configuration of the webserver, so you may be on a host that doesn't support it.

envalid  2009-08-07 07:51:00
This would be nice, but we have enough problems with server configurations being out of whack here that I don't want to rely on that.
smack0007  2009-08-07 08:09:23
+1  A: 

I would suggest building a super-simple script for retrieving files based on ticket system like in CMS you generate ticket to DB - filename, unique-hash and than redirect to the super-simple file-retieving script (file.php?hash=asd52ad3as1g5). It will get the hash from query and based on it fetch the real filename and push that to output as you have written using fpassthru. The hash need to be unique and hard to guess...

Tomáš Fejfar  2009-08-07 11:08:39
but just if you need to finish you script, I think it's nothing wrong with exit() it's used in internal ZF redirects as well ;)
Tomáš Fejfar  2009-08-07 11:09:31
+1  A: 

I see nothing wrong with just exit(); What you will need to be careful of is any output buffering layers you may have on (gzip compression, etc). Large files could blow up those buffers pretty quick, so you'll want to close them out and potentially 'chunk' your output with a fopen/fread loop.

Justin  2009-08-07 14:19:56

related questions

Views in separate assemblies in ASP.NET MVC
Using ASP.NET MVC, how to best avoid writing both the Add View and Edit View?
Best way to bind Windows Forms properties to ApplicationSettings in C#?
What's the best way to implement field validation using ASP.NET MVC?
How do I handle page flow in MVC (particularly asp.net)
How do I get rid of Home in ASP.Net MVC?
ASP.NET Model-view-controller (MVC) - where do I start from?
php Zend / MVC without mod_rewrite
RSS Feeds in ASP.NET MVC
MVC Learning Resources
Validating posted form data in the ASP.NET MVC framework
A Stack Overflow Podcast throwback: What is to be done about tag soup?
Use the routing engine for form submissions in ASP.NET MVC Preview 4
How do you get a custom id to render using HtmlHelper in MVC
MVC pattern question: Who has what? who calls what?
MVC Preview 4 - No route in the route table matches the supplied values.
Is there a way to include a fragment identifier when using Asp.Net MVC ActionLink, RedirectToAction, etc. ?
In ASP.NET MVC I encounter an incorrect type error when rendering a user control with the correct typed object
Public/Popular Websites using JavaServer Faces
ASP.NET MVC - Is it worth it yet?
Multiple languages in an ASP.NET MVC application?
Is it better to create Model classes, or just stick with generic database utility class?
Looking for a MVC Sample for WinForms
What are MVP and MVC and what is the difference?
How to RedirectToAction in ASP.NET MVC without losing request data