Forum Moderators: mack
I am trying to use cookies to protect specific pages on my site.
Let me give the situation...
Person logs in
If password wrong, they are directed to a registration page. If correct to specific pages. I set a cookie at this stage.
I would like to use the cookie on other pages and so call upon it, this works well.
The client can then browse through the site and logout when they finish. At this stage the cookie is destroyed.
The problem is when i type the url to any one of the pages i would like protected, it goes throuhg and displays content.
How can i avoid this?
Please advice.
Saboi
Which language are you using?
1. You aren't checking for the cookie on all pages
or
2. You aren't deleting it on all exit actions
or
3. You check for the cookie but don't actually act on the result.
Thanks.
I am using PHP.
When a user successfully logs in, a cookies is created which is repeated on every page.However when i type the full url in the address bar for anyone of the "protected" files, it takes me straight to that path.
Please advice what i could be doing wrong.
Saboi
a cookies is created which is repeated on every page
Have you considered using sessions instead of cookies for your authentication? That way you wouldn't have to check the cookie just a session variable.
Tried sessions and just made a posting under the php forums. Please do check and assist me where i have gone wrong. My script is working but i am not getting the desired results.
Saboi
