by “within the context of the site pages” I mean there is a registered customer area (it’s a joomla site), where the customer should be able to see thumbnails, etc. of their own art files.
What I’m trying to avoid is just anybody being able to go to www.mysite.com/clientArt/someclient/someprivateimage.png and see some other client’s artwork.
Granted, there’s some protection already in my file structure… you would have to know the clientId and the name of the artwork to find the files to begin with.
I think what I might do is generate the thumbnails on the fly, via php and imagemagick, in which case I would be able to put the files in a directory below the public area. That would also relieve the number of thumbnail files I’d need to manage, but might slow down the page display in the process.
Testing for a referrer might work just as well, tho I don’t know how to set that up… is that also an .htaccess function?
What about just adding a redirect in my site .htaccess where www.mysite.com/clientArt would just redirect to the site index? Would that work, or would it also prevent those images from being displayed on the pages where they’re needed?
I appreciate your help