window opener

[raji96]

Hi,

I have a window with 3 frames in it the header frame has the name of the user and the body frame opens a popup window and display the data on the popup sreen. I need to prevent anyone other than valid users from accessing the popup screen. for eg. if someone gets the url then they should not be able to launch the screen, for that I am trying to read the user name and role from the parent window and see if it is null before opening the popup screen,if the values are null then I redirect them to the main window.
Since the parent window and the popup windows are in the two different servers i cannot validate the session.

what is the best way to deal with this kind of situation.

Thanx in advance.

 

[jemminger]

if you want/need true security, you need to do this server-side and look for a session variable that would be set only upon an authenticated login.


=========================================================
-jeff

http://www.jeffemminger.com

try { succeed(); } catch(E) { tryAgain(); }

 

[adam0101]

Wow, that's a tough one. JavaScript is not the way to go if you're concerned about security. If I were you I would create my own popup page so I could use server-side session variables or whatever to validate the user. Then if the user is valid, I'd use ASP to do an http request to get the content of the popup page from the other server and display the contents in my popup page. Here's an example of how to get the contents of a page on a different server:

http://asp101.com/samples/http.asp

Adam
while(ignorance==true){perpetuate(violence,fear,hatred);life=life-1};