Yeah, that can be done... you would just generate the password behind the scenes when a new record was created (making the pw field admin only so the end uer doesn't even know it exists).
But are your permissioning by file or once permissioned, a user can download all files?
But are your permissioning by file or once permissioned, a user can download all files?