Page 1 of 1

login security

Posted: Mon Jul 28, 2008 9:55 am
by permuganza
Hi guys, how do i protect my login script from people who copy the url of the page into the address bar and go directly to page where the login script is supposed to lead them.
Your help is warmly welcomes
Hugs

Re: login security

Posted: Mon Jul 28, 2008 10:00 am
by jaoudestudios
When the login script confirms the user set a session variable.

At the top of the page that you want to protect check for this session variable, if it is not set then redirect them to the login page, if it is set then display the page :)