Re: Methods of protecting "invoice page"
This WebDNA talk-list message is from 2003
It keeps the original formatting.
numero = 52397
interpreted = N
texte = 1. Use the [protect] tags, that's what they're there for.However, sometimes you don't have admin rights to set up new groups toprotect, or, you need to be able to add multiple users easily; and/or theyneed to be able to administer their accounts (change passwords). In thatcase, use a database of SKU, USER_NAME and PASS_WORD. Then, on eachprotected page, search that database to see if they should have access:[searchdb=YOUR.db&eqUSER_NAMEdatarq=[USER_NAME]&eqPASS_WORDdatarq=[PASS_WORD]&allBLNK=T]This of course coming after having a login form.If [numfound]=0 then [redirect] them elsewhere (login screen again so thatthey can retype it in the case of a typo.If [numfound]=1 then display the page.GK-----Original Message-----Hi all,Just looking to get a feel for the way most people protect their"invoice" pages within an online store.As I see it, there are a few options:1) Add IP address to order file, and compare that to current IP addresson each protected invoice page2) Add Cookie ref to order file, and compare that to current Cookie refon each protected invoice page3) Force customers to register, and then get them to log in, thus usingthe [protect] tag.I guess you could also combine any two/three of the above methods too.Any thoughts/suggestions on this topic?Thanks.-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list
.To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
1. Use the [protect] tags, that's what they're there for.However, sometimes you don't have admin rights to set up new groups toprotect, or, you need to be able to add multiple users easily; and/or theyneed to be able to administer their accounts (change passwords). In thatcase, use a database of SKU, USER_NAME and PASS_WORD. Then, on eachprotected page, search that database to see if they should have access:[searchdb=YOUR.db&eqUSER_NAMEdatarq=[USER_NAME]&eqPASS_WORDdatarq=[PASS_WORD]&allBLNK=T]This of course coming after having a login form.If [numfound]=0 then [redirect] them elsewhere (login screen again so thatthey can retype it in the case of a typo.If [numfound]=1 then display the page.GK-----Original Message-----Hi all,Just looking to get a feel for the way most people protect their"invoice" pages within an online store.As I see it, there are a few options:1) Add IP address to order file, and compare that to current IP addresson each protected invoice page2) Add Cookie ref to order file, and compare that to current Cookie refon each protected invoice page3) Force customers to register, and then get them to log in, thus usingthe [protect] tag.I guess you could also combine any two/three of the above methods too.Any thoughts/suggestions on this topic?Thanks.-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
"Gary Krockover"
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Nesting [RAW] (1998)
Clearly.home (1998)
Re:HELP - NONE STOP DIGESTS. Digest for 4/24/97) (1997)
WebCommerce: Folder organization ? (1997)
RE: WebCat cannot handle compatible search parameters? (1997)
Nested tags count question (1997)
delete a record and ssl (2005)
Search bug. Help (2002)
RE: [WebDNA] Sending 100 mails an hour then pausing (2010)
Banners (1997)
Too Much Rootbeer Free Offer (1997)
Constructive criticism (2000)
Max DB Size (2004)
Navigator Parsing (1997)
The [shownext] limitations (2002)
SQL / Webcat Help (1999)
Getting the width and height of gif files (2000)
[Semi-OT] Eaaaaaasy OSX FTP (2003)
RE: Problems reading files created by WC (1997)
Secure server question (1997)