header function secure

morbidchick

Is the header function secure?

I need to redirect people from mysite into another probably through .htaccess. Will the function stop the username and passwd from being viewable or receiveable from the browser?

header("Location:/path/to/new/URL");

If not what will combine with the function to get my desired result?

keith73

can you be more specific?

What is it doing right now? Is username/password being passed in a URL?
Is this other site in a different domain or is it just a variation of the original.
i.e.
www.mydomain.com to
user.mydomain.com

what is your desired result?

need input

is this what you want to do?

1) user logs in to mydomain.com
2) user is redirected to otherdomain.com

keith

morbidchick

Yes sorry.

The user is passed via my server to an external address ie. www.theresite.com/membersarea/ or similar.

The desired result is to enable a payment system, a user/surfer visits a clients website and clicks on a popup link, on the popup are instructions on how to gain access to the members area through sms billing. The user sends an sms which we receive. Our server then processes the request and sends a pin code to the users mobile phone.

Using this pin the user enters the pin into a field and submits the form, the popup then accesses another page on our server which still shows in the popup, and tells the user the pin is valid.

They are also presented with a go button or similar to log into the website.

Some how we have to be able to allow them access to any website in such a way and control the amount of time the pin is valid for, ie 1 hour...1 day or a weeks etc etc. And once the time is up not let them back in or if its for a short abount of time oe. 30 mins how to boot them off once the pin has expired.

Well thats about the bones of it.

Most I can get help with its just the last paragraph and how to complete that?

Please help.