php loading a page clicking banner

**grigione** · 07-14-2010 03:38 PM

An user clicks on my banner that open my php page
I want this page is loaded only clicking on the banner and not putting the 'web address directly in the browser
It's possible?

**PETTE** · 07-14-2010 04:11 PM

If I understand what you're trying to say. Yes it is possible. You'll need to look into a language called Ajax. If you don't mind reloading the page just include the page in the current page which has the banner and exit after checking that the banner was clicked.

**Jarrod1937** · 07-14-2010 05:03 PM

An easier route is just to lookup the referrer. It can be easily spoofed for those who want to, so it depends on how fool proof you want it.

**grigione** · 07-14-2010 11:09 PM

ok thank you can you post some example of code how to make ?
thanks

**Jarrod1937** · 07-15-2010 08:42 AM

Google is your friend ;-)
http://www.google.com/search?q=php+referrer

**grigione** · 07-15-2010 10:10 AM

ok.. but this work if the banner is located in my page that i specify in script but i want the system working for banner located in any webpage on internet

**Jarrod1937** · 07-15-2010 10:31 AM

The banner is on their site correct? Thus when someone clicks on the banner from their site, it will have a referrer url of their site. If someone goes directly to the url, no referrer is sent.

**grigione** · 07-15-2010 10:39 AM

correct but i'm new in php can you help me with code ?

**grigione** · 07-15-2010 02:13 PM

PHP Code:


<?php

    if($_SERVER['HTTP_REFERER'] == NULL) {

         echo  "access  denied";

         exit();

    } else {

        // Insert your page contents here.

        

         header("Location: http://site.com");

    }

?>

i'm trying this if i type url in browser it give me access denied but if click banner
it give me error coookie and don't go to page
where is error?

**Jarrod1937** · 07-15-2010 04:23 PM

What do you mean by "it give me error coookie"? Does it give you a specific error? If so, what is that error? As far as i can see, nothing in the code sample you gave should be giving a cookie error.

**grigione** · 07-16-2010 03:15 AM

ok working it was a my mistake...
ok but it can be easily spoofed
A best alternative to $_SERVER['HTTP_REFERER'] what is ?

**Jarrod1937** · 07-16-2010 08:48 AM

The real question is how secure do you want it? Almost any method can be spoofed, its just a matter of how easily. Is this merely for an ad site? Or do you plan on using this for some truly secure information (in which case its a very bad approach)?

**grigione** · 07-16-2010 09:41 AM

not only for ad site but i want a minimal protection...
i have tried also the define method: Suppose that i want protect page index.php containing a form
i have inserted function define in link.php that is page linked by banner :

PHP Code:


<?php
define('_VALID_INCLUDE', TRUE);
include('index.php');

/* rest of file */

?>

and in index.php i have inserted:

PHP Code:


defined('_VALID_INCLUDE') or die('Direct access not allowed.');

in this mode working but in browser url of link.php is visible and it's available for direct access to form

Thread: php loading a page clicking banner

Thread Tools

Display

php loading a page clicking banner

Thread Information

Users Browsing this Thread

Bookmarks

Bookmarks

Posting Permissions