|
Posted by Rik Wasmus on 01/25/08 00:26
On Fri, 25 Jan 2008 00:36:18 +0100, Evan Jou <l.jou@att.net> wrote:
> Hi there,
>
> I have a simple question for you experts here. If I key in a URL =
> like,
> for example, http://localhost/test.php?name=3DEvan&password=3DJou dire=
ctly, =
> will
> it send the name and password data to the test.php script? Can I use
> $_GET['name'] and $_GET['password'] to manipulate the data?
Yes, it will be in the $_GET array. It is not recommendable though. URL'=
s =
are often saved in history, can be bookmarked, shared, etc, and you don'=
t =
want usernames/passwords in there. HTTP authentication, or even better, =
=
POSTing the credentials one and just starting a session based on that, =
would be preferable.
-- =
Rik Wasmus
Navigation:
[Reply to this message]
|