0.30 Tag

ChangeLog

@@ -0,0 +1,27 @@
+0.30
+
+  - Added onAccessGranted and onAccessDenied hooks for File
+  - DateField compatibility fixes
+  - Member access token permission option
+  - Support for x-sendfile module and fread send method
+  - Added tests for basic operations
+  - Added buildtask to rebuild htaccess files
+  - Translations: German, Spanish, Finnish, French and Swedish
+
+0.21
+
+  - Minor bugfix release
+
+0.20
+
+  - Improved 2.4 compatibility
+  - Better i18n support
+  - Member permission option
+  - CMS administration improvements
+
+
+0.10
+
+  - Initial release
+  - Abstracted security method
+  - Group permission option

README

@@ -1,5 +1,5 @@
 ###############################################
-Secure Files Module                       trunk
+Secure Files Module                        0.30
 ###############################################
 
 A light-weight secure file provider.
@@ -20,12 +20,12 @@ http://polemic.net.nz/secure-files-module/?refer=docs
 Installation Instructions
 -----------------------------------------------
 1. Extract the module to your website directory.
-
+   
 2. Run /dev/build?flush=1
-
+   
 3. Optionally apply the additional permission modes
    listed in _config.php
-
+   
 Usage Overview
 -----------------------------------------------
 Adds a "Security" tab to the Folder options in
@@ -44,7 +44,7 @@ Recommendations
   If you're using SilverStripe in rewriteless mode
   (using the base index.php) or via IIS, DO NOT
   USE THIS MODULE.
-
+  
 * Disable all Apache Option directives for your 
   asset folders from your Apache configuration
   (eg httpd.conf). Prevents directory indexing,
@@ -59,7 +59,19 @@ Recommendations
   headers with Secure Files by adding this to your
   _config.php:
   SecureFileController::use_x_sendfile_method();
+
+Developer Tips
+-----------------------------------------------
 
+* Create new access methods by decorating File and
+  implementing the canViewSecured method. If it returns
+  true access to the file is granted.
+
+* Hooks are provided for onAccessGranted and 
+  onAccessDenied. Implement these methods in your
+  decorators to trigger actions when the file is 
+  requested.
+
  Disclaimer
  -----------------------------------------------
  ADDITIONAL COMMENTARY TO THE LICENSE DISCLAIMER:

code/SecureFileController.php

@@ -95,9 +95,13 @@ function handleAction() {
 		$file = File::find($file_path);
 
 		if($file instanceof File) {
-			return ($file->canView())
-				? $this->fileFound($file, $file_path)
-				: $this->fileNotAuthorized("Not Authorized");
+			if ($file->canView()) {
+				$file->extend('onAccessGranted');
+				return $this->fileFound($file, $file_path);
+			} else {
+				$file->extend('onAccessDenied');
+				return $this->fileNotAuthorized("Not Authorized");
+			}
 		} else {
 			return $this->fileNotFound("Not Found");
 		}