Last post Nov 19, 2009 07:33 AM by rtpHarry
Nov 19, 2009 06:48 AM|chrizztheone|LINK
I have a page that I want to grant access if the users come from a certains adress ex:
http://www.43i89435.com/page.asp, all traffic from this site can access a page on my server, is it possible, dont wont any password or login, or can i implement login/password in a url
Nov 19, 2009 07:33 AM|rtpHarry|LINK
This information (referrer) is spoofable. This means that if anyone got wind of this security hole in your website they could fake it and get in.
You can accept anything you want via the querystring so you could put a user name and a password in it, or you could have some kind of system that uses an encrypted auth key...
Then on the page you check if the data is in the query string and then programatically login: