Im trying to set up a web site that will provide document delivery for our clients (the company is mainly doing legal work for their clients and most of the work involves doucments).
The documents will be in PDF format (their acrobat reader will open on their desktop so they can read it) and I’m trying to set security on the files.
The way it works is that each user that wants to view a document has to logon to our system we use a sql database to validate the user. Once the user is validated we give them a list of the documents they can view (thru asp pages).
Now here is my problem each document/file may be for more then one client, but if you are not one of the clients that need access to it, you should be denied access to it.
Now I know I can create a user name in my NT domain for each client that needs access and then assign file permissions, but I do not want to do it as this will make it almost impossible to keep track of everything going on.
What I’m trying to do is setup ageneral user account that I’ll give permission to access all the PDF documents and when ever a user gets validated over the internet (thru our sql server) I’ll provide the documents for them (with the general user account thru code), but I dont wantthe internet user to see the path of where the documets are located (I want to place the documents on a regular WINNT share not a WWW share), all they should see is a asp page and acrobat should open.
Is this possible?
And if yes how? and where can I get more info on that?