How do you figure out who sends the POST information?
Moderator: General Moderators
-
SashaSlutsker
- Forum Newbie
- Posts: 18
- Joined: Sat Mar 20, 2004 11:24 am
How do you figure out who sends the POST information?
What's the easiest way in PHP to find out who sent POST information? (If this is impossible, I could just use an Apache thing to block all sites except my own from sending POST information, assuming it is possible to do that. If so, just tell me.) Anyway, can someone please help me out here?
-
SashaSlutsker
- Forum Newbie
- Posts: 18
- Joined: Sat Mar 20, 2004 11:24 am
Yes, I do use sessions. However, someone could log in, be in the session, and then send POST information from their own script or whatever. I want to stop this. Sometimes, I see something like "You do not have permission to send POST data on this site" or something when I try to access a site, I am thinking I can do this somehow.
-
SashaSlutsker
- Forum Newbie
- Posts: 18
- Joined: Sat Mar 20, 2004 11:24 am
-
d3ad1ysp0rk
- Forum Donator
- Posts: 1661
- Joined: Mon Oct 20, 2003 8:31 pm
- Location: Maine, USA
$_SERVER['HTTP_REFERER'];
php.net wrote:'HTTP_REFERER'
The address of the page (if any) which referred the user agent to the current page. This is set by the user agent. Not all user agents will set this, and some provide the ability to modify HTTP_REFERER as a feature. In short, it cannot really be trusted.