 |
Brandon
User
May 31, 2003, 5:58 PM
Post #1 of 3
(2977 views)
Shortcut
|
|
Access only from certain pages
|
Can't Post
|
|
I thought I had seen a script somewhere a few years ago that, when added, prevents a person from accessing a certain page unless they got to it through another page or domain first -- as though it checks that the person came from a certain referring page.
I don't know enough about programming to know if that's just plain silly, but does anyone know about such a thing? I know you can do it in .asp, but I'm not wanting to use .asp.
Thanks.
Brandon
|
|
| |
|
Cliff
Staff
Jun 2, 2003, 2:58 PM
Post #2 of 3
(2964 views)
Shortcut
|
|
Re: [Brandon] Access only from certain pages
[In reply to]
|
Can't Post
|
|
Hi Brandon
Thanks for posting 
Our products enable you create unique user accounts that users can use to access various areas of the administration program. To add multilevel password protected access on the front end of the site, you may need a 3rd party program to manage the passwords and users, etc.
If you are looking for a Perl solution, perhaps you will find this link helpful:
http://www.cgi-resources.com/Programs_and_Scripts/Perl/Password_Protection/
Give that a try. If it's not what you are looking for, just let me know and I will do my best to find another solution for you
Thanks Brandon, have a great day!
Regards,
Cliff Stefanuk - Customer Service Manager
support@interactivetools.com
|
|
| |
|
Dave
Staff
/ Moderator
Jun 4, 2003, 12:41 AM
Post #3 of 3
(2954 views)
Shortcut
|
|
Re: [Brandon] Access only from certain pages
[In reply to]
|
Can't Post
|
|
Brandon,
The way your browser works, anytime you request a page it sends the URL of the page you were just on (the "referer"). You can access this value from javascript, or any programming language capable of building web applications.
If you had a web app (script) display your page, you could run some code first to check if the referer wasn't what you wanted and display an error message instead.
Another approach would be to have some javascript code that would immediately redirect people to another page if the referer didn't match, of course they could turn off javascript to bypass that.
And one more... If you were running Apache you could probably setup your configuration in such a way to grant/deny requests with certain referers. I recall hearing about people who setup their websites to deny external image requests so people couldn't steal their bandwidth by linking directly to their images.
One last thing to keep in mind, because referers are sent by the user (and their browser) you can never really trust them. It's possible for people to send a fake referer and bypass your "security", although that would be challenging for the average user.
Hope that helps.
Dave Edis - Senior Developer
interactivetools.com
|
|
| |
| | |
|
