I'm looking for a way to provide protection/authentication which is integrated with my web site and not just basic http authentication to block access to certain directories. The behavior I desire is the following:
Example: (Trying to protect Flash SWF directory)
Scenario: User tries to access [login to view URL] from the site directly at [login to view URL]
Based on the user's current state one of two things would happen if they are logged into the site or not.
If they have logged into the site they can gain access to the file.
If they are not logged into the site, the server should detect this and redirect the user to a login page.
I'm not sure how this can be achieved, I was assuming this may require a custom Apache authentication module but not sure. Maybe there are other ways of achieve this effect.
## Deliverables
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):
a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
## Platform
Apache Web Server