473,378 Members | 1,407 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp / active server pages > questions > http_referer question

Join Bytes to post your question to a community of 473,378 software developers and data experts.

HTTP_REFERER question

On our web site we allow our members access to features hosted by another
web site. The way the other web site authenticates users is to check the
value of the HTTP_REFERER. If it comes from our Login.asp page it lets them
in. When our users login to go to the other site, they login on our site's
Login.asp page. When they click submit, our LoginCheck.asp page validates
them and does a response.redirect to the other site. In most cases the
other site sees the HTTP_REFERER as Login.asp (I guess because the
LoginCheck.asp is doing a redirect and HTTP_REFERER doesn't work with
redirects). But in some case the other site is seeing nothing in the
HTTP_REFERER. My question is why would there not be a value in the
HTTP_REFERER object? If anyone can help I would appeciate it.
Jul 22 '05 #1
2 1646
there are clients (webbrowsers) that do not sent HTTP_REFERER. some clients
even allow you to change the referer value. doing an authentication based on
http referer ist about the weakest security you can have. basically you
could as well just put the link on your page without any login :-)

- thomas
"M Smith" <ms****@avma.org> wrote in message
news:O0**************@TK2MSFTNGP12.phx.gbl...
On our web site we allow our members access to features hosted by another
web site. The way the other web site authenticates users is to check the
value of the HTTP_REFERER. If it comes from our Login.asp page it lets
them
in. When our users login to go to the other site, they login on our
site's
Login.asp page. When they click submit, our LoginCheck.asp page validates
them and does a response.redirect to the other site. In most cases the
other site sees the HTTP_REFERER as Login.asp (I guess because the
LoginCheck.asp is doing a redirect and HTTP_REFERER doesn't work with
redirects). But in some case the other site is seeing nothing in the
HTTP_REFERER. My question is why would there not be a value in the
HTTP_REFERER object? If anyone can help I would appeciate it.

Jul 22 '05 #2
> redirects). But in some case the other site is seeing nothing in the
HTTP_REFERER. My question is why would there not be a value in the
HTTP_REFERER object?


Because it is totally up to the browser to send it or not.
http://www.aspfaq.com/2169
Jul 22 '05 #3
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

2
Using SPLIT( ) to parse HTTP_REFERER
by: John A. Irwin | last post by:
I'm very new to PHP and am trying to figure out how to parse out a variable "HTTP_REFERER". My reason for this is my site was recently "FEATURED" (sic) on a website called FARK.COM. Because of...
PHP
2
Question about $HTTP_HOST, $HTTP_REFERER
by: ssk | last post by:
Hello! I made a web site using PHP Open sources for message board. Everything's fine except one computer can't open a message writing page. The code that gives an error is the following. ...
PHP
9
asp javascript HTTP_REFERER is or is not undefined?
by: Robert Mark Bram | last post by:
Hi All! I have the following in an ASP script: var bounceBackPage = Request.ServerVariables("HTTP_REFERER"); Response.Write("<p>bounceBackPage: " + bounceBackPage + ". Undefined? " +...
ASP / Active Server Pages
4
Javascript menus (mm_menu) not forwarding http_referer
by: Ringo Langly | last post by:
Hi everyone, We're using an outside vendor to provide some content for our website, and they use the http_referer variable to verify their content is only viewed from subscribing customers. ...
Javascript
28
Use of HTTP_REFERER in Global.asa
by: Prabhat | last post by:
Hello, I have the below requirement. When ever my website is opened by any link: say clicked from the google search result or a link from other website: Then I should able to know the...
ASP / Active Server Pages
15
HTTP_REFERER not there when coming from an ASP Response.Redirect
by: Drebin | last post by:
I am retrofitting a central login application and want to be able to read the Request.ServerVariables so that when they have logged on, I can send them back to wherever they were trying to go.. ...
ASP.NET
5
Problems with HTTP_REFERER
by: Paperback Writer | last post by:
Hi, I have the following code in my ASPX: private string pagina = System.IO.Path.GetFileName(System.Web.HttpContext.Current.Request.ServerVariables.ToUpper()); The problem is it: When i call...
ASP.NET
8
HTTP_REFERER not always there
by: tshad | last post by:
Why would HTTP_REFERER not be there in the Page_Load event? I am using it to determine whether a page was called from a particular page. I am doing: sTest =...
ASP.NET
1
HTTP_REFERER Returns Nothing
by: doar123 | last post by:
Hi, I'm trying to retreive information using Request.ServerVariables("HTTP_REFERER"), with no success. The users arrive to the page using simple link, and without being redirected or any other...
ASP / Active Server Pages
1
Cloud Servers without Credit Card and Email Registration: A Simpler Way to Get on the Cloud
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
General
0
isladogs
Access Europe: Command bars, the Access Shortcut Tool and a simple Audit Log - Wed 3 April
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...
General
0
One-click Importing Excel Data into a*Database
by: ryjfgjl | last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
Microsoft Excel
0
Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
General
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!