Hello
I've got a form that basically asks for a user login, and if the authentication works, the user is just redirected to a page with info that you should not be able to see without the userid/pw combo. The authenticaiton is, btw, just a SELECT statement on a Users table in MySQL.
Problem is - once logged in, the user can always just copy the URL of the new page, and always go straight there. Any way around this? I thought of creating the second page dynamically as a result of the authentication (instead of redirecting the user to an existing page), but I don't know how to do it. Any ideas?
If you have any other ideas on how to ensure the user always goes through the login page, please let me know.
Thx.
I've got a form that basically asks for a user login, and if the authentication works, the user is just redirected to a page with info that you should not be able to see without the userid/pw combo. The authenticaiton is, btw, just a SELECT statement on a Users table in MySQL.
Problem is - once logged in, the user can always just copy the URL of the new page, and always go straight there. Any way around this? I thought of creating the second page dynamically as a result of the authentication (instead of redirecting the user to an existing page), but I don't know how to do it. Any ideas?
If you have any other ideas on how to ensure the user always goes through the login page, please let me know.
Thx.