posting password fields

Anon

PLEASE HELP!!!! AHHH!

My Objective: to create a script to automatically sign up for an account here:

www.topica.com/register

My Problem: i can't set the value for the password fields and post them.

My Attempts: I tried using
?upassword=whatever&upasswordc=whatever, and that doesnt work, HOWEVER it does work with all the other fields.

Extra:
If it doesnt support GETS for the password field, then i must you POST right? Well i'm using the ol' sendToHost();
(POST HEADER FUNCTION) to post the variables, and that doesnt even seem to work when i tried seting the password field in there.

My Questions: Is there another way to accomplish this task, or am i screwd?

How do i do it? (please include some useful code)

What am i doing wrong ?

How would you accomplish my Objective?

Anon

I would accomplish your objective like this:

//First page: THE FORM

<FORM NAME="TheForm" METHOD="POST" ACTION="<? echo $PHP_SELF ?>?seepass=1">
<INPUT TYPE="PASSWORD" NAME="ThePass">
<INPUT TYPE="SUBMIT" VALUE="Let's rock it baby...">
</FORM>

This is very ugly. Do the design of the form yourself.

//Second page: THE AUTHORIZATION

//Imagine the password must be "fLIPIS" :-)

if($HTTP_POST_VARS["ThePass"] != "fLIPIS"){
echo "No, mate. No way i'm leaving you enter here";
}else{
echo "Hello, fLIPIS. How's it going";
}

Now, two things. You should protect more this by using a check on $HTTP_REFERER (ensuring the form comes from where it must)
and also check $REQUEST_METHOD, that must be equal to POST. This prevent people from entering the URL on the URL bar on the browser.

This is a simple auth system. It's a basis. Develop more complicated (server Auth, MySQL lookup and then check) yourself (if you want to)

Hope this helps

fLIPIS

flipis

Oh, one more thing. If using PHP 4.1.2 or above, you can also use $_POST["ThePass"] instead of $HTTP_POST_VARS["ThePass"]

fLIPIS