DENY direct download of file using php

Question

I have .doc and .zip files in download directory on my server. whoever visit my site page (download-file.php) only those user should

Answer 1

If you have a dedicated server the easiest and in my opinion the most secure way is to store the files outside of /var/www/

You can for example create a folder /var/webdocs/ and store them there.