GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Business (sort of): Protecting an ajax called page from abuse?

Miguel T · 01-23-2014, 06:07 PM

I would use #3 ...
Since PHP Sessions are server-side, how could those be "hacked"?

On the AJAX page, all you would have to do is see if that Session var was set, if not: die() , else ... do whatever it needs to do.

01-23-2014, 06:07 PM
Miguel T ♦ Web Developer ♦ Industry Role: Join Date: May 2005 Location: Full-Stack Developer Posts: 12,472	I would use #3 ... Since PHP Sessions are server-side, how could those be "hacked"? On the AJAX page, all you would have to do is see if that Session var was set, if not: die() , else ... do whatever it needs to do. __________________ Full Stack Webdeveloper: HTML5/CSS3, jQuery, AJAX, ElevatedX, NATS, MechBunny, Wordpress