Welcome to WebmasterWorld Guest from

Forum Moderators: open

Message Too Old, No Replies

hiding URL

1:54 am on Jul 6, 2011 (gmt 0)

New User

5+ Year Member

joined:July 6, 2011
votes: 0


I will ask my question by presenting a situation, hope someone can help me. Totally newbie in HTML and PHP.

main site:

concern url to "hide"

I have a forum where there's an exclusive redirect link/board that is visible for certain group of people only.

Question is, how can I redirect the link to www.mainsite.com/url.php, without having to expose the url? So that for that certain group of people to access the url, they need to go thru the forum. And of course, so as not to expose the URL to people outside the circle (doesnt have access to forum)

9:53 pm on Aug 30, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Mar 22, 2001
votes: 0

Take a look at mod_rewrite. [httpd.apache.org...]
9:55 am on Aug 31, 2011 (gmt 0)


WebmasterWorld Administrator phranque is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Aug 10, 2004
votes: 227

you can use mod_rewrite to internally rewrite urls (usually) based on matching the patterns of various environment variables (requested urls, query strings, hostnames, etc.)
if coded properly the internal rewrite will not expose the rewritten url.

however, you can't really restrict or exclude unwanted visitors by hoping to keep a url secret.
the only control you have is providing the response that is appropriate to the visitor-supplied request headers and cookies for the requested url.

how do you identify or recognize that certain group of people?
10:38 am on Aug 31, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member g1smd is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:July 3, 2002
votes: 0

Since URLs are published on the web as links, you can't keep a URL secret. However, you can control access over what content that URL returns based on what was in the users HTTP request.

You could look at the referrer (which may be missing or spoofed) or you could look at the cookie data that you dropped on their browser on a previous page view (which could be spoofed, unless you take extra steps) or you could ask for a user name and password.

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members