homepage Welcome to WebmasterWorld Guest from 54.146.190.193
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / WebmasterWorld / New To Web Development
Forum Library, Charter, Moderators: brotherhood of lan & mack

New To Web Development Forum

    
Bookmarking pages
Trying to get my website online
Adam5000

5+ Year Member



 
Msg#: 4204298 posted 4:44 pm on Sep 20, 2010 (gmt 0)

Hi everyone.

I've got a website that I'm trying to get online. The content has been done for about 10 days and I'm working on the technical aspect of getting the credit card processing working.

It has both a guest area and a member's area, and for the members area I'm trying to set up what I'm calling a "Password gateway." That's the part where a form is displayed on the screen that says something like "Choose a username, Choose a password, reenter password," and so on.

And then another form comes up and says something like "Enter username and password."

And as I was thinking about possible solutions, one significant possibility came to mind. And I'm sure a small percentage of people have tried this on other sites.

What if a user's membership expires and the home page of the member's area has been bookmarked. What's to stop the user from going to the member's area via a bookmark?

Help!

Adam5000

 

LifeinAsia

WebmasterWorld Administrator lifeinasia us a WebmasterWorld Top Contributor of All Time 5+ Year Member



 
Msg#: 4204298 posted 4:51 pm on Sep 20, 2010 (gmt 0)

Normally, I set a cookie with the user's username. All pages in the member's area check for the cookie and redirects to the logon page if not found. One possible method is to set the membership expiration date as the cookie expiration date. (However, if the user cancels the membership, the cookie would still be valid and allow the user to continue to have access.)

As a secondary check, you can query your database using the cookie to verify that the membership has not expired. However, that means an extra hit to the database every time a member's-only page loads. (Depending on your application server, you might be able to cache those queries to cut down on the overhead.) If it's not a lot of pages, the overhead may not be too bad.

Adam5000

5+ Year Member



 
Msg#: 4204298 posted 3:03 am on Sep 23, 2010 (gmt 0)

Thanks Life. That sounds like a good idea.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / New To Web Development
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved