Re: Methods of protecting "invoice page"

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 52397
interpreted = N
texte = 1. Use the [protect] tags, that's what they're there for. However, sometimes you don't have admin rights to set up new groups to protect, or, you need to be able to add multiple users easily; and/or they need to be able to administer their accounts (change passwords). In that case, use a database of SKU, USER_NAME and PASS_WORD. Then, on each protected page, search that database to see if they should have access: [search db=YOUR.db&eqUSER_NAMEdatarq=[USER_NAME]&eqPASS_WORDdatarq=[PASS_WORD]&allBL NK=T] This of course coming after having a login form. If [numfound]=0 then [redirect] them elsewhere (login screen again so that they can retype it in the case of a typo. If [numfound]=1 then display the page. GK -----Original Message----- Hi all, Just looking to get a feel for the way most people protect their "invoice" pages within an online store. As I see it, there are a few options: 1) Add IP address to order file, and compare that to current IP address on each protected invoice page 2) Add Cookie ref to order file, and compare that to current Cookie ref on each protected invoice page 3) Force customers to register, and then get them to log in, thus using the [protect] tag. I guess you could also combine any two/three of the above methods too. Any thoughts/suggestions on this topic? Thanks. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Methods of protecting "invoice page" ( Mark Derrick 2003)
  2. Re: Methods of protecting "invoice page" ( "Gary Krockover" 2003)
  3. Re: Methods of protecting "invoice page" ( Donovan 2003)
  4. Methods of protecting "invoice page" ( Mark Derrick 2003)
1. Use the [protect] tags, that's what they're there for. However, sometimes you don't have admin rights to set up new groups to protect, or, you need to be able to add multiple users easily; and/or they need to be able to administer their accounts (change passwords). In that case, use a database of SKU, USER_NAME and PASS_WORD. Then, on each protected page, search that database to see if they should have access: [search db=YOUR.db&eqUSER_NAMEdatarq=[USER_NAME]&eqPASS_WORDdatarq=[PASS_WORD]&allBL NK=T] This of course coming after having a login form. If [numfound]=0 then [redirect] them elsewhere (login screen again so that they can retype it in the case of a typo. If [numfound]=1 then display the page. GK -----Original Message----- Hi all, Just looking to get a feel for the way most people protect their "invoice" pages within an online store. As I see it, there are a few options: 1) Add IP address to order file, and compare that to current IP address on each protected invoice page 2) Add Cookie ref to order file, and compare that to current Cookie ref on each protected invoice page 3) Force customers to register, and then get them to log in, thus using the [protect] tag. I guess you could also combine any two/three of the above methods too. Any thoughts/suggestions on this topic? Thanks. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ "Gary Krockover"

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Nesting [RAW] (1998) Clearly.home (1998) Re:HELP - NONE STOP DIGESTS. Digest for 4/24/97) (1997) WebCommerce: Folder organization ? (1997) RE: WebCat cannot handle compatible search parameters? (1997) Nested tags count question (1997) delete a record and ssl (2005) Search bug. Help (2002) RE: [WebDNA] Sending 100 mails an hour then pausing (2010) Banners (1997) Too Much Rootbeer Free Offer (1997) Constructive criticism (2000) Max DB Size (2004) Navigator Parsing (1997) The [shownext] limitations (2002) SQL / Webcat Help (1999) Getting the width and height of gif files (2000) [Semi-OT] Eaaaaaasy OSX FTP (2003) RE: Problems reading files created by WC (1997) Secure server question (1997)