This is how it is supposed to work. In your login page, not only should u
check to see if the login/pasword is right, but also set a session variable
to true. Then on the top of every admin page, do a test to see if that
session variable is true or not. if not, forward them to the login page.
there are some other small things to consider but that's the basics of it if
u need more help lemme know!
----- Original Message -----
From: Hubert Earl <[EMAIL PROTECTED]>
To: CF-Talk <[EMAIL PROTECTED]>
Sent: Thursday, March 08, 2001 9:47 PM
Subject: Protecting an admin page
> Hi,
>
> I have an admin page which can be accessed thru a login page. However, as
> it now stands, if someone were to learn bookmark that page, he or she
could
> return to it via the bookmark, rather than via the login page. How can I
> ensure that someone could only access the admin page via the login page?
>
> Sincerely,
> ---
> Hubert Earl
>
> ICQ#: 16199853
> AIM: hubertfme
>
> See pictures of items in my Jamaican Art, Craft & More Store Online Sale
on
> my "Me" page on eBay (this tells you a little about myself, including a
> photo), and there's a link to the auctions themselves:
> http://members.ebay.com/aboutme/hearl1/
>
> See pictures of all items I have:
> http://www.angelfire.com/ny/hearl/link_page_on_angelfire.html
>
>
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
