What are the best practices for handling file requests and responses in PHP scripts?

When handling file requests and responses in PHP scripts, it is important to ensure security by validating user input and sanitizing file paths to prevent directory traversal attacks. It is also good practice to set appropriate headers for file downloads, such as Content-Type and Content-Disposition. Additionally, consider implementing file caching to improve performance and reduce server load.

// Example of handling file download request in PHP

// Validate and sanitize file path
$file = &#039;path/to/file.pdf&#039;;
if (file_exists($file)) {
    // Set appropriate headers for file download
    header(&#039;Content-Type: application/pdf&#039;);
    header(&#039;Content-Disposition: attachment; filename=&quot;&#039; . basename($file) . &#039;&quot;&#039;);
    
    // Output the file contents
    readfile($file);
} else {
    // Handle file not found error
    echo &#039;File not found&#039;;
}

Keywords

file requests file responses PHP scripts error handling security vulnerabilities

What are the best practices for handling file requests and responses in PHP scripts?

Keywords

Related Questions