require ('./conexion.php');
$des_id=$_GET['des_id'];
$des_id_private=$_GET['des_id_private'];
if($des_id!=""){
$sql="SELECT * FROM descarga WHERE des_id=".$des_id." AND des_privada='0'" ;
$query=mysql_query($sql);
$row=mysql_fetch_object($query);
$data = $row->des_fichero;
header("Pragma: public");
header("Expires: 0");
header("Cache-Control: must-revalidate, post-check=0, pre-check=0");
header("Cache-Control: public");
header("Content-Description: File Transfer");
header("Content-Type: ".$row->des_tipo);
$header="Content-Disposition: attachment; filename=".$row->des_nombre_file.";";
header($header );
header("Content-Transfer-Encoding: binary");
}
elseif($des_id_private!=""){
session_start();
if(isset($_SESSION['user']) && $_SESSION['user']!=""){
$sql="SELECT * FROM descarga WHERE des_id=".$des_id_private." AND des_privada='1'" ;
$query=mysql_query($sql);
$row=mysql_fetch_object($query);
$data = $row->des_fichero;
header("Pragma: public");
header("Expires: 0");
header("Cache-Control: must-revalidate, post-check=0, pre-check=0");
header("Cache-Control: public");
header("Content-Description: File Transfer");
header("Content-Type: ".$row->des_tipo);
$header="Content-Disposition: attachment; filename=".$row->des_nombre_file.";";
header($header );
header("Content-Transfer-Encoding: binary");
} else {
?>
}
}
if($data!=""){
echo $data;
} else { ?>
}
?>