I currently have a form setup where the user has to provide their name and email address before accessing a file to download on the web site. The problem I have is that the confirmation page can be browsed to directly if you know the URL or if the URL gets shared.

Are there any suggestions for "securing" or protecting the confirmation page such that it can only be viewed after a form submission?

I don't want to go route of registering the user and then requiring the user to be authenticated to view the confirmation page as I bleive that could cause issues with somebody filling out the form again (and reregistering) in the future.

Thanks for any pointers!

-- Jeff

Hi,

I would say use RSFiles! for download functionalities.

hi. i know this post is a month old, but this is what i did in the same situation.

I happen to be using zoo for my downloads. But the concept is the same even if its straight html.

I installed a plugin called "DirectPHP" that allows me to add inline php to any article.

when the form is submitted, I set a cookie called AGREE to yes. then redirect them to the download page.

at the top of the download page, in php code, i test for the cookie if they have agreed. if not, i redirect them back to the form.

The site i did this for didnt need to track visitors past two weeks, so i set the cookie to expire two weeks later. if they came back after that, then they had to fill out the agreement again. this does require them to be at the same computer. to do otherwise, you are going to need a membership management system.

hope that helps. took me a bit to figure out this solution, but once i did, it has been working really well.

Cliff