Littel help!

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
autonomous
Forum Newbie
Posts: 3
Joined: Mon Jan 10, 2011 2:05 am

Littel help!

Post by autonomous »

Hi every body :)
Am working on my college's project, which is online exam website.
I have implemented the login page where the users must register and then login into the site.
the problem is if the user enter the URL of the pages that should be accessed after login page, the page will run. :(
Is there any method rather than sessions to protect that pages ???

plzz help me !!

Thanks,,, :wink:
jankidudel
Forum Commoner
Posts: 91
Joined: Sat Oct 16, 2010 4:30 pm
Location: Lithuania, Vilnius

Re: Littel help!

Post by jankidudel »

Why won't you put authentication form on this page also ? :D

2 option is here http://php.net/manual/en/features.http-auth.php
autonomous
Forum Newbie
Posts: 3
Joined: Mon Jan 10, 2011 2:05 am

Re: Littel help!

Post by autonomous »

jankidudel wrote:Why won't you put authentication form on this page also ? :D

2 option is here http://php.net/manual/en/features.http-auth.php
Thanks 4 reply but, I have many webpages which come after the login page so, It may b diffcult to do form authentication 4 all.
User avatar
social_experiment
DevNet Master
Posts: 2793
Joined: Sun Feb 15, 2009 11:08 am
Location: .za

Re: Littel help!

Post by social_experiment »

Create an 'auth' page and include it on every page. When a user accesses a page and is not logged in, they get redirected back to the form and asked to login.( An 'auth' page checks if a user is logged in by checking if certain conditions are met, condition which are set on successful login.)
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.” - Mosher’s Law of Software Engineering
autonomous
Forum Newbie
Posts: 3
Joined: Mon Jan 10, 2011 2:05 am

Re: Littel help!

Post by autonomous »

Thanks bro :D
Post Reply