Password Protected Pages

Anon

Dear Friends,
How can I protect a particular web page with a password? Also is there is any way to hide my URL Address??

For example: I have a page named www.test.com/secret.php to be kept, password protected. How can I do that?

Please help me with this... Thanks all

Liby

[deleted]

You could start by reading the manual of your webserver. The most common way is by using a .htaccess file.

Hiding the URL is more complex, Easiest way is to use a 'hidden frame' That's a aframeset with just one big (fullscreen) frame.

ugh82

the first think you must to do , is create a form that post a field name pass to the secret.php file.

example of form:
<form method="post" action="secret.php">
<input type="password" name="pass" size="5">
</form>

then create a secret.php file like :
<?
$MYpass="EnterYourSecretPassHere";
if ($pass==$MYpass) {
$fp=fopen("http://YOURSECRETHTMLFILE","r");
$data="";
while($data=fgets($fp,4096)) {
echo $data;
}
fclose($fp);
} else {
echo "<body><h1>ACCESS DENIED</h1></body>";
}
?>

on MYpass variable you add the secret password you want and on the YOURSECRETHTMLFILE you just enter the url of the html ( for example http://www.test.com/blah.html ) .

With this way in your address bar it's only show the secret.php file 🙂

[deleted]

Ehm... what planet are you from? :-)

ugh82

I am from Mars!

Works this or not? if works then where is the problem ?
😉

[deleted]

It could probably work, but it's just about the biggest workaround I have seen so far.
every webserver has a standard method for password protecting pages. Sometimes the solution is very simple.

ugh82

yes you have right. But I provide a solution in php and not with a web server .
And I don't have your experience.
😉)

Anon

Dimitris, thanks. I just found your solution very useful

P.S. (vincent be carefull with simple solutions, sometimes it just lack security)

[deleted]

Rubens, thanks for the warning, but Liby just wanted to password protect a page, not to make a fortress out of his/her website.
If you just want to password protect your page, then basic http authentication is sufficient.
If you want to be hacker-safe you'll need SSL and encrypted cookies.