The way that I have done this in the past is to set a cookie after the
initial authentication. On all pages that require authentication you check
for the cookie and validate that it hasn't been tampered with. If this
check fails you redirect the user to the login page. To prevent tampering
you
I am trying to password protect part of my website.
I have the password form page done.
But how to I make the pages protected so you have to go through the password page?
Do i do it by passing hidden inputs from page to page?
How do I force people coming in around the password page to go through
if you're running Apache, look into .htaccess for password protecting
certain parts of your site.. no reason to make something harder than it
has to be.
~Eric
On Monday, January 7, 2002, at 07:58 PM, Luinrandir Hernson wrote:
ect part of my website.
I have the password form
--
To
actually, most likely you are looking not just password checking but also session
management.
The easiest way is to take advantage of mod_auth which come with apache by default
(consult
this part of the apache faq for more detail
http://httpd.apache.org/docs/misc/FAQ.html#user-authentication)
