Two Ways To Protect Your ASP Page

There may be a time when you have certain .ASP pages that you only want people to be able to access when going through your site. You don't want other websites to link directly to these pages (for example, you may want a user to have filled out a lengthy form before arriving at a certain page). It's not difficult to protect your ASP pages this way. We will use the Request.ServerVariables collection to perform this task.

At the top of the .ASP page that you want "protected" put this code:

<% 
if left(Request.ServerVariables("HTTP_REFERER"),24)  <> "http://www.yoursite.com/" and _
     Request.ServerVariables("HTTP_REFERER") <> "" then
 
    'We used Request.ServerVariables to get the domain name 
    'of the referring web page.
 
    'If the domain name doesn't equal my domain name, then 
    'I want to send the user to some other site 
    Response.Redirect "http://www.yahoo.com"
 end if 
%>


This next method uses the IP number, which can be useful when you do not yet have the domain but still want to test it online.

At the top of your ASP page put this code:

<%
if Request.ServerVariables("REMOTE_HOST") <> "195.161.73.13" and _
    Request.ServerVariables("REMOTE_HOST") <> "" then

    'Send them away, if you like
    Response.Redirect "http://www.yahoo.com"
end if
%>


asp protection security


Back To Top
© 1998 - 2024 psacake.com
Version 7.21 | Advertise on this site