Tips and Tricks HQ Support

Support site for Tips and Tricks HQ premium products

Hide URL of Wp-pdf stamper plugin when the customer downloads the stamped files

by

Tips and Tricks HQ Support Portal Forums WP PDF Stamper Hide URL of Wp-pdf stamper plugin when the customer downloads the stamped files

Tagged: , , ,

Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
    Posts
  • April 20, 2014 at 5:46 pm #10681
    agarwalc
    Member

    I have WooCommerce installed where the Customers can download the E-Books they’ve purchased from the links in their email/customer account on the website. However, when they download the file, they can see the following link –

    …/stamped-files/filename_5354073dc1a6c.pdf]

    Is there any way to mask this URL?

    April 20, 2014 at 8:08 pm #62349
    wzp
    Moderator

    You don’t need to hide/mask that URL for the following two reasons:

    1) That file is a stamped file not your original file (it is stamped with the users details so it is useless for someone else)

    2) It is a temporary file which will get deleted later. You can go to “Manage Stamped Files” menu and set it so the plugin auto deletes stamped files that area X days older.

    If you were using WP eStore pluing, instead of WooCommerce, you could use estore’s encrypted download link system to mask the URL.

    When you use eStore, it has the ability, via its special downloader, to mask the source directory of downloaded files. See the Security of Your Digital Asset and Secure Download Manager sections in this list of eStore features:

    http://www.tipsandtricks-hq.com/wordpress-estore-plugin-complete-solution-to-sell-digital-products-from-your-wordpress-blog-securely-1059?ap_id=TheAssurer

    December 10, 2016 at 3:49 pm #62350
    electacourse
    Member

    Having just installed and now testing WP-PDF Stamper, I come to this thread as I was seeking the answer to the same question.

    I understand the answer given by WZP, but if a user with a little sense, strips away the temporary code element of the URL, then they will be able to download the original unstamped file. So in the above example they could guess and download …/stamped-files/filename.pdf

    Am I missing something?

    I am testing PDF-Stamper with Woocommerce (which I cannot exchange for an alternative ecommerce plugin)

    December 10, 2016 at 6:21 pm #62351
    wzp
    Moderator

    Since you are “doing testing,” can you demonstrate your thesis to us? Remember, you’d also have to know the source directory of the original unstamped file.

    December 11, 2016 at 12:00 am #62352
    admin
    Keymaster

    You can put the source file wherever you want to. As a matter of fact, for the WooCommerce integration, the source file comes from whatever you have configured in your WooCommerce. The source file DOES NOT live in the stamped files directory.

    Also, the stamped files directory can be changed in the plugin configuration. So you can specify a DIFFERENT stamped files folder that no one would be able to guess.

    We don’t worry too much about the stamped copy of the PDF file because that file is a temporary file that gets deleted (if you set the settings to auto delete those files after 2 days or something like that). The stamped copy of the file is specifically prepared for a particular customer (with his details) and is a temporary file. That makes it to where it doesn’t need to be protected the way you would want to protect your standard files.

    December 11, 2016 at 9:02 am #62353
    electacourse
    Member

    D’oh! What I was missing was the concept of putting the source file NOT in the …/stamped-files/ folder.

    Issue resolved now I have created an alternate source files folder. I understand your point about the temporary files and auto-delete.

  • Author
    Posts
Viewing 6 posts - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.