Hello everybody,

My problem consists of avoid people not authenticated to access attachments previously sent. We should be granted to access just if we are logged.
The application let us to upload files but we do not want everybody to access the files uploaded. We want the user to be authenticated before because anyone could access through url if we do not ensure that and we would like to let to access just the authenticated users we decide through links if possible, as email account controls your accounts and let you see only data sent from/to you.

Client Server
-- --

File--->>>----File attached

Client Server
-- --

Not authenticated
url File attached-->>>-- Deny
Authenticated-->>>--View File through application

[Improved application]
Client Server
-- --
Not authenticated
url File attached-->>>-- Deny

Authenticated
and is granted to
access --->>>--View File through application (it could be a link to attached file we could click) or an image we can see in app

Thanks in advance. :confused: