PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!
I have set up some security checks to stpo variables being misused in links, but it there a way of disguising the link itself? or the variables within the link?
Although I personally haven't used for this purpose, I'd have a look at [php_man]serialize[/php_man]. Do note, however, that as a rule of thumb, do not exceed 256 characters for a URL. Rumour has it that some browsers can't cope with more (although I personally don't know which ones).
The checks i've added check a user variable, id variable and order number against the database and session variables so people can't change numbers to get a match, i mean maybe they could but they'd have to be damn lucky to get it, lol.
if you [php_man]urlencode[/php_man] that, you'll have the desired effect. There might be more elegant ways of doing that, but serialize & urlencode is the first thing that comes to mind.