For new users, there is often some confusion between DocumentIDs and DocumentKeys. The two are not interchangeable and represent two different approaches to accessing a given document.

• DocumentID - A DocumentID is a unique integer which represents a given document instance.
  • DocumentIDs must not be shared externally or provided to RAD PDF from an untrusted source.
  • DocumentIDs are suitable for long term storage or association.
  • DocumentIDs can not be revoked.

  Untrusted sources (e.g. a browser request) could easily guess a DocumentID which it should not be allowed to access.

  For example, if a user is viewing a document with DocumentID=2, the user might correctly guess that a document with DocumentID=1 exists. If your application trusts the browser to provide the proper DocumentID, the user can easily gain access to a document which does not belong to that user.

  DocumentIDs are intended for trusted data sources (e.g. a secure server side database).

  For example, if a user is associated with a document with DocumentID=2, your applicable may choose to store in its database that this user "owns" a document in RAD PDF with DocumentID=2. When the user returns to your web application, your application can simply use the LoadDocument method of the PdfWebControl to re-open the document for the user. The same should not be done with DocumentKeys because DocumentKeys can be revoked and do expire.

  Note:
  It is important to remember that in most cases, the ASP.NET View State is not a trusted source.

  Note:
  A new document (and hence new DocumentID) is created when the CreateDocument or CopyDocument method of the PdfWebControl is called. LoadDocument loads existing documents, hence a new DocumentID is not created.

• DocumentKey - A DocumentKey is a unique access key (sometimes called token) for a given document instance.
  • DocumentKeys may be shared externally or provided to RAD PDF from an untrusted source.
  • DocumentKeys are not suitable for long term storage or association.
  • DocumentKeys can be revoked.

  Unlike DocumentIDs, DocumentKeys are generated using a secure, random method which can not be easily guessed.

  Similar to a session key, DocumentKeys expire. In RAD PDF, these keys expire at a fixed time after they are created. It is important that DocumentKeys expire (or are revoked) so that after a user has logged out or goes idle, another user at the same computer can not open that document using browser cache.

  Multiple DocumentKeys can correspond to a single DocumentID.

  DocumentKeys can be passed to a browser (via viewstate, querystring, cookie, etc) and later used to load a document in RAD PDF without concern.

  Note:
  A DocumentKey is automatically generated when the CreateDocument, LoadDocument, or CopyDocument method of the PdfWebControl is called.

RAD PDF data is primarily stored in 4 "tables":

• keys - Keys which reference Documents in the docs "table". Multiple Keys can reference the same Document.
• docs - Documents which reference PDFs in the pdfs "table". Multiple Documents can reference the same PDF.
• pdfs - PDFs which reference Pages in the pges "table".
• pges - Pages rendered.

The RAD PDF database differentiates between PDFs and Documents. The two are not interchangeable and represent two different containers of information, detailed below.

• PDF (pdfs) - A PDF constitutes a file, as loaded into RAD PDF. PDF files are preserved in RAD PDF as a "starting point" or "template" for a Document instance.

  Note:
  If the AllowFindMatchingPDF property of the PdfWebControl is set to true (default), RAD PDF will automatically look for an identical, already loaded PDF in the pdfs "table" in attempt to be more efficient.

  Note:
  PDFs are internal to RAD PDF and are not directly exposed by RAD PDF.

• Document (docs) - A Document constitutes an instance of a PDF. This allows multiple users to use the same PDF as a "starting point" for different Document instances without affecting each other.

  Note:
  Documents are exposed by RAD PDF, most prominently as a RAD PDF Document.