Javascript Protection Using PHP?

Anon

Is it possible to protect .js files using PHP? so that only your website can GET them. And by going to the URL, it just sends you back?

saloon12yrd

Nah that's impossible.

It's not the site that gets the .js (.php,.html, whatever) files, it's the browser of the people accessing your site.
You want them to get these files so that they can browse your site.

Sorry for the bad news 🙂

Dominique

lentin64

Then if you want to protect:
<?php
header("Content-type: text/x-javascript");
if($J == "H") { ?>

// your javascript here

<? } else { ?>
<SCRIPT LANGUAGE='JavaScript'>
history.back();
</SCRIPT>
<? } ?>

I think that's how you do it. If they go to SomePage.php without the J in query, then they will be sent back by the javascript.

saloon12yrd

Anybody who reads the source code of the calling script will spoof this protection...

Dominique

Anon

I know that you can with ASP, but my server dont allow ASP, and ASP and PHP are sort of alike, so i was just wondering 🙂

Anon

Make the same script as Steven Chalker wrote. Exept it should check for the referal URL.

if (eregi("YOURWEBSITE.com", $HTTP_REFERER)) then the request is coming from your website

If the referal will not match or someone just goes to the .js URL and there would be no referal then he/she wont be able to get the file..

Anon

Thanks

Anon

How about putting all scripts in a folder, then call them like this:

script language="javascript" src="xxxxx.js"

You can then password protect the folder, so that only your domain can access it.

Read this tutorial for more info:
Prevent Hotlinking to your Images at

http://www.geocities.com/akindele/