Verify that $HTTP_REFERER is the URL the user was supposed to come from. Somethig like (you may have to tweak it because I cannot test where I am now):
if( strcmp($HTTP_REFERER,"www.mydomain.com/login.html") ) { header("Location: http://www.mydomain.com/login.html"); exit; } -----Original Message----- From: jas [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 12, 2002 4:23 AM To: [EMAIL PROTECTED] Subject: [PHP-DB] Required pages... I am wondering if there is a way to force users to come from a certain page. For an example I am using a login page which once authenticated allows users to change the contents of a web site without knowing alot of code etc. What I would like to do is make sure that the content management system will not be accessed unless the user logs in. I am certain sessions is the way to go on this, however I am still new enough to not understand exactly how they work and how to impliment them on a site. I have read a little bit on a tutorial on php.net. If anyone can give me an example of how this could be accomplished I would appriciate it. Jas -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php