Members Only Pages

[Lew]

Assuming I want to handle a subsection of my site as "members only"
(which I intend to script myself), how does FP handle making secure pages
off limits to non-members (ie not logged in), and what's to prevent someone
from just browsing into a members' only page by entering the complete url
into his browser?
I do NOT want to use server side authentication.

-Lew

 

[Stefan B Rusynko]

Without server side authentication, you have no authentication or control
(client side can always be defeated)
See http://support.microsoft.com/default.aspx?scid=kb;en-us;825451
Your host will have to support subwebs and unique permissions under the FP Server Extensions




| Assuming I want to handle a subsection of my site as "members only"
| (which I intend to script myself), how does FP handle making secure pages
| off limits to non-members (ie not logged in), and what's to prevent someone
| from just browsing into a members' only page by entering the complete url
| into his browser?
| I do NOT want to use server side authentication.
|
| -Lew
|
|

 

[Lew]

What about writing to the server-side cgi? Clients would not have access to
the scripts. The fp/subwebs solution seems difficult to automate. eg if
someone has browse only permissions, they can't change their password; otoh,
the only thing they should be allowed to change IS their password.
-Lew

 

[Lew]

Just as a curiosity, how does a site like eBay manage the personal
information pages? I assume that they're generated on the fly, but where are
they stored while the user is online and what's to prevent someone else from
viewing them while that user is online?
-Lew

 

[Stefan B Rusynko]

You can use any server side technology
Perl (CGI), PHP, ASP, etc.




| Just as a curiosity, how does a site like eBay manage the personal
| information pages? I assume that they're generated on the fly, but where are
| they stored while the user is online and what's to prevent someone else from
| viewing them while that user is online?
| -Lew
| | > Without server side authentication, you have no authentication or control
| > (client side can always be defeated)
| > See http://support.microsoft.com/default.aspx?scid=kb;en-us;825451
| > Your host will have to support subwebs and unique permissions under the FP
| Server Extensions
| >
| > --
| >
| > _____________________________________________
| > SBR @ ENJOY (-: [ Microsoft MVP - FrontPage ]
| > "Warning - Using the F1 Key will not break anything!" (-;
| > To find the best Newsgroup for FrontPage support see:
| > http://www.net-sites.com/sitebuilder/newsgroups.asp
| > _____________________________________________
| >
| >
| | > | Assuming I want to handle a subsection of my site as "members only"
| > | (which I intend to script myself), how does FP handle making secure
| pages
| > | off limits to non-members (ie not logged in), and what's to prevent
| someone
| > | from just browsing into a members' only page by entering the complete
| url
| > | into his browser?
| > | I do NOT want to use server side authentication.
| > |
| > | -Lew
| > |
| > |
| >
| >
|
|

 

[Kevin Spencer]

There are several server-side solutions tho these issues. However, eBay
isn't likely to be giving away their trade secrets.

--
HTH,
Kevin Spencer
..Net Developer
Microsoft MVP
Big things are made up
of lots of little things.

 

[Lew]

Kevin:
Could you point me to some info regarding one of the server side
solutions? Preferable perl/cgi.
Thanks.
-Lew

 

[Stefan B Rusynko]

See http://cgi.resourceindex.com/Programs_and_Scripts/Perl/Password_Protection/




| Kevin:
| Could you point me to some info regarding one of the server side
| solutions? Preferable perl/cgi.
| Thanks.
| -Lew
|
|