Check if user went randomly to a page.

T

tshad

What is the best way to check if a user got to one of my pages by just
typing in the page in the URL line verses one of the pages from my site.

I see this in lots of places. If I have a page that can be gotten to by
pages "A", "B", "C" and "D" - this is fine. But any other way, I want it to
send a message saying they are not authorized or to go directly to a logon
page.

I am using Forms Authentication.

Thanks,

Tom.
 
T

tshad

Steve C. Orr said:
Forms Authentication is your best bet.
It is easily configured in your web.config file.
Here's more information:
http://www.dotnetbips.com/displayarticle.aspx?id=9
Click to expand...

That is how I have it set up now.

What I am trying to prevent is someone doing something like bookmarking the
page for later, logging onto another page then going directly to a page
without going through the normal paths. He would be able to do this if he
is already authenticated and the session (cookie) has not not timed out.

Tom
 
C

Chris R. Timmons

What is the best way to check if a user got to one of my pages
by just typing in the page in the URL line verses one of the
pages from my site.

I see this in lots of places. If I have a page that can be
gotten to by pages "A", "B", "C" and "D" - this is fine. But
any other way, I want it to send a message saying they are not
authorized or to go directly to a logon page.

I am using Forms Authentication.
Click to expand...

Tom,

Use Request.UrlReferrer to find out which page the user just came
from.
 
S

Steve C. Orr [MVP, MCSD]

You could use a Session variable to keep track of which "step" the user is
on.
Then on each page make sure they're on the correct step and haven't jumped
to a step they shouldn't be on. You can redirect them to the correct step.
 
G

Guest

UrlReferrer is not a required field. Most proxy servers and a lot of
firewalls will strip that field out of the requests.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

HCaptcha - How to stop page from refreshing on submit if captcha is not checked/validated 1
A website that I couldn't make a screenshot of it nor save any page from. 1
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Check if user is authenticated 3
If you need to code a Windows Forms software that uses C# software how do i make the design for a software that makes this Post Description function ? 0
How to effectively develop a web application from scratch? 0
How can I execute a function ONLY if fetch request returns 404 status? 0
Sending data from web page to Raspberry Pi 0

Members online

No members online now.
Total: 34 (members: 0, guests: 34)
Robots: 195

Forum statistics

Threads
473,766
Messages
2,569,569
Members
45,042
Latest member
icassiem

Latest Threads

Top