onAfterLogin() do the AssetStore::grant() that Maxime is talking about - purely hypothetically


but thats so annoying - if someone sends you a link by whatsapp or slack you shouldn’t then be required to click through other links to get to it, you should just get the file (with log in pop up if needed)


so you can route on some sort of mighty secure hash


like a really basic “click here to view your file” thing


Given you're the first to raise this... it's presumably not that common. I guess most people only have the links to the files on the related pages