March 15, 2011 at 1:38 am #2936hyperinkMember
I’m concerned about hosting my digital product files at web-accessible URLs. No matter how many encrypted links I generate, all it takes is someone accidentally posting the non-encrypted link (or a clever crawler to sniff it out) and security is compromised.
Cart66 is an inferior plugin but it does offer the option to host digital goods at a non-web-accessible URL such as /var/digital_products/. It will then generate an encrypted download link. I was wondering if this is implemented or on the roadmap for eStore? Or, if anyone can give me pointers on how to go about implementing it, I can give it a shot.
WeiMarch 15, 2011 at 2:02 am #30169amin007Participant
This method already works with WP eStore. You might have to tweak the settings in “WP eStore Settings -> AddOn Settings -> WP eStore Download Manager Related” section.
Usually people get confused with absolute path of a file so this method is not mentioned on the documentation but yes for advanced user this is a good option. Just make sure you know the absolute path to the file properly… what you see in your FTP file browser may not be the actuall file path (web hosting companies usually do a path translation).March 15, 2011 at 8:14 am #30170hyperinkMember
Great, exactly what I was looking for. Thanks for the timely reply!
Will definitely tell others about your useful plugin and excellent supportMarch 15, 2011 at 12:48 pm #30171
And for uber secure storage of digital goods, there is always the Amazon S3 integration feature of eStore.September 27, 2011 at 8:35 am #30172
I would like to store the actual files outside of the public HTTP area.
* When I log in using FTP, site is as “/website.com/”, one folder in from root.
* WordPress is installed there, and so the content is at “/website.com/wp-content”.
* I would like to store the files at “/private_files/” outside of the public area.
* The actual path to one a file might be “/private_files/filename.zip”.
I have configured eStore to point to a custom download folder “http://www.website.com/download/”, and when I use ‘eStore’ > ‘Admin Functions’ > ‘Generate an Encrypted Download link for a Product’, a valid link appears to have been generated. Clicking that link results in: “Download file cannot be found. Please let us know. Thank you!”.
In the Product settings, under “Digital Content Details”, I have “Downloadable” checked, and “Digital Product URL” set to “/private_files/filename.zip”, which is the absolute path.
Finally, under ‘eStore’ > ‘Settings’ > ‘Addon Settings’ > ‘WP eStore Download Manager Related’, I have “Automatic URL Conversion Preference” set to “(Default) Absolute” and “Download Method” set to “(Default) Method 1, Fopen-8K”.
I am unsure if I should be using the absolute file path in the Product settings, or if I should chose a different value for the “Automatic URL Conversion Method” in ‘Addon Settings’.September 27, 2011 at 8:41 am #30173
Follow-up … If I place a copy of the file in the public website folder and change the product’s “Digital Product URL” set to “http://www.website.com/filename.zip”, it serves the file correctly.
I just need to know how I can store the files outside of the public area, and which values I should be plugging into the product’s “Digital Product URL”.September 27, 2011 at 8:48 am #30174
I solved the problem. The “download_manager_debug.log” was extremely helpful, and pointed out that WordPress is not installed at “/website.com/”, but at “/home/website/website.com/”.
What you said above regarding “what you see in your FTP file browser may not be the actuall file path” was correct!
Thanks! I’m definitely enjoying this product.September 27, 2011 at 11:20 am #30175September 28, 2011 at 8:17 pm #30176PamelaMember
This works beautifully. Again, y’all make me look and feel smart!November 12, 2011 at 5:49 am #30177LouisMember
I am not able to make this “/home/website/website.com/” work for product variations, has any of you succeeded?
It works for single products with no variations though.November 12, 2011 at 1:41 pm #30178
Do the paths in the download_manager_debug.log file jive with what you think the real paths should be?
Does you hosting provider allow scripts to access directories outside the $_SERVER[DOCUMENT_ROOT] directory?November 13, 2011 at 2:08 pm #30179LouisMember
I haven’t bothered to enable and check the debug.log yet because the /home/account/folder/product.zip DOES work for product with no variations. I might have a look, but according to the email I have received it’s NOT possible for product variations.
I do have ‘deep’ access.November 13, 2011 at 10:12 pm #30180adminKeymaster
Absolute path won’t work on variations.
- You must be logged in to reply to this topic.