No!
All my secure site�s ( in
\sambar_sysuser\... and its subdirs ) beginns with
stm files:
<RCif RCEloggedin ! true>
<html>
<head>
<meta http-equiv="REFRESH" CONTENT="1;
URL=index.stm">
<link rel="stylesheet" type="text/css"
href="/sysuser/webmail/desktop.css">
</head>
<body>
<center><br>
<font size=+2 color=#ff0000> Your error message</font>
</center>
</body>
</html>
<RCexit>
<RCendif>
<html>
<head>
..
..
</html>
php files:
[code:1:ac6a1c1c12]<?
include("????.xxx.php");
//---+++--- check auth user
if ((isset($_SERVER['RCEUSERNAME'])) AND
(isset($_SERVER['REMOTE_ADDR']))){
--- your php code ---
} else {
echo "ERROR ???"; // no auth user
header("Location:
http://your.domain.com/login.php";); //or something else
exit;
}
?>[/code:1:ac6a1c1c12]
or (auth user and php sessions). You have to create the
session(var�s) first:
[code:1:ac6a1c1c12]<?
include("("????.xxx.php");
//---+++--- check auth user
if ((isset($_SERVER['RCEUSERNAME'])) AND
(isset($_SERVER['REMOTE_ADDR']))){
session_cache_expire(6);
session_name("uid");
session_start();
//---++--- check session data
if($_SESSION['username'] ==
$_SERVER['RCEUSERNAME'] AND $_SESSION['sid'] ==
session_id()){
--- your php code ---
} else {
echo "ERROR ???";
mysql_close($con);
header("Location:
http://your.domain.com/login.php";);
exit;
}
} else {
echo "ERROR ???"; // not loged in user
mysql_close($con);
header("Location:
http://your.domain.com/login.php";);
exit;
}
mysql_close($con);
?>[/code:1:ac6a1c1c12]
Thats only an example !!!!!
mbsouth
-------------------------------------------------------
To unsubscribe please go to http://www.sambar.ch/list/
