I need some ideas here on the best way to do this. I have many html reports that are meant for specific users to see when they login. I am making a front end php little app so when a user logs in he gets only his reports in a list of links. When they click on the actual report I would like to be able to hide the true location URL of the report so people dont go fishing around to look at other peoples reports.

It is my idea that the simplest way to do this would make it so that nobody can actually see the true URL. This would mean I would not have to do an extra step in security and user accounts could be a web side event not some extra security step.

Thanks for any ideas.

    It is my idea that the simplest way to do this would make it so that nobody can actually see the true URL. This would mean I would not have to do an extra step in security and user accounts could be a web side event not some extra security step.

    You'll have to keep the content out of the web site structure, then. One suggestion would be to store the content of these links in a database, and have a user ID associated with it. Upon successfully logging-in, check the table with this content, and provide links to it with the user's ID (e.g. show.php?uid=00001).

    -- Gary

      Write a Reply...