Reply to Re: [PHP] How do I POST data with headers & make the browser follow?

Your name:

Reply:


Posted by Brent Baisley on 10/06/05 15:57

If the information is sensitive, why are you trying to fake a POST
submission? A POST can be received from anywhere. SSL is just
encrypting it, not verifying the client is the same. I would use
session variables to store information you need to access from page
to page. That way you can verify that you are talking to the same
computer from the first two pages.


On Oct 6, 2005, at 5:52 AM, Ragnar wrote:

>
> Hi guys/girls,
>
> I have to apologize if this issue has been discussed in detail
> before but I
> couldn't find anything obvious so far.
>
> What I need/want to do is to :
>
> 1. Take POST data from a form (no problem)
> 2. Do whatever i need to on the target page (no problem)
> 3. Pass some other data on to a 3rd page as a POST
> request.
> 4. Get the browser to follow to said 3rd page.
>
>
> All this is happening via SSL.
>
> So basically what i am trying to do is to "fake" whatever happens
> at a normal POST request that is handled by the browser.
>
> Now point 4. in my example above is giving me a massive headache,
> I have managed to pass data on to the 3rd page as POST quite
> comfortably
> using cURL but the browser doesn't follow (ie. the URL in the
> address bar
> remains unchanged).
>
> I did see that there is a FOLLOWLOCATION option you can set in cURL
> when you
> do you request, and though "wicked, just what I needed" only to
> find out
> that it's not working (probably because I understand what it does
> wrong).
>
> Pretty pretty please if anyone knows a solution for the above, let
> me know.
>
> Oh, and I'd also like to add that the information I am trying to
> get to the
> 3rd page in the example is sensitive (Credit Card details etc.), so
> $_GET
> and $_COOKIE are out of the question.
>
> ANY help would be appreciated.
>
> Kind regards,
> Ben
>
> --
> 5 GB Mailbox, 50 FreeSMS http://www.gmx.net/de/go/promail
> +++ GMX - die erste Adresse für Mail, Message, More +++
>
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
>
>
>

--
Brent Baisley
Systems Architect
Landover Associates, Inc.
Search & Advisory Services for Advanced Technology Environments
p: 212.759.6400/800.759.0577

[Back to original message]
Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация