Hello everyone,
We have a web site running on IIS 5.1 and we have links pointing to swf
files. Those links become available once the user login in to the web
application with a form. But if the users capture the url of the swf they can
access the swf without logging in. I want to use the forms authentication of
the web application serving these files so that they can not be access unless
the user logins with the form.
I know i can do this by adding an entry in the application mapping of my
virtual folder using the for the .swf files. This solution works fine but
there is a problem if the flash files are about 25mb or more. It seems like
IIS won't let the swf "application" download the file therefore causing an
error on the client side. Those swf files download the necessary content from
the web server and once all the components are in the cache it starts the
flash application (all this is done within the flash application)
My question is: Is there any kind of download limitation when mapping a file
extension in the Application Configuration of the virtual folder of the web
application? And if yes, can I go around it?
Note: If I do not map the swf files everything works fine except the fact
that the swf files can be access without authentication with the web
application.
Any help or other solutions to protect the swf files (except a flash
streaming server and NT security in IIS) would be appreciated!
Thank you!
Alexandre