Home »
Imported messages »
comp.lang.php »
check user log and redirect
Re: check user log and redirect [message #174494 is a reply to message #174485] |
Tue, 14 June 2011 23:08 |
Jerry Stuckle
Messages: 2598 Registered: September 2010
Karma:
|
Senior Member |
|
|
On 6/14/2011 3:51 PM, Co wrote:
> Hi All,
>
> I know Jerry will have comments again but I will post my question
> anyway.
> I have this code that checks if the user is logged in and if not it
> should direct him to the login page.
> However when I am not logged in I can still go to pages which I am not
> supposed to go.
> I tried to understand what the code is doing but I don't follow.
> Can someone have a look at my code and tell me why I can still go to
> restricted pages?
>
<About 150 lines of code snipped>
First of all, NEVER depend on cookies for anything important, like
whether the user is logged in or not. EVERYTHING from the user should
be suspect, as it can very easily be faked.
As for the rest - cut it down to the minimum needed to show the problem.
I'm not going to spend time going through 150+ lines of cryptic code,
trying to figure out what you're doing.
Looks like (another) script you just copied from the web without
understanding what it does.
--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex(at)attglobal(dot)net
==================
|
|
|
Goto Forum:
Current Time: Tue Nov 26 07:35:00 GMT 2024
Total time taken to generate the page: 0.04895 seconds