PhpDig.net

Go Back   PhpDig.net > PhpDig Forums > Troubleshooting

Reply
 
Thread Tools
Old 05-19-2004, 03:16 PM   #1
cwheat
Green Mole
 
Join Date: May 2004
Posts: 5
Adding a variable to the end of every link?

Hello,

I want to use this for a intranet and inorder to get past the user auth I need phpdig to automaticly add a couple of varaibles to the end of the links it tries to open.

so

http://www.myserver.com/index.php would auto look like:

http://www.myserver.com/index.php?bypassauth=1

and when it found lets say the news link
news.php it would auto add to it as well:
news.php?bypassauth=1

Thanks
Chris
cwheat is offline   Reply With Quote
Old 05-20-2004, 05:00 PM   #2
vinyl-junkie
Purple Mole
 
Join Date: Jan 2004
Posts: 694
Instead of monkeying with the phpdig code, why not setup a process to append that string to every URL in the database? Just a thought.
vinyl-junkie is offline   Reply With Quote
Old 05-20-2004, 05:17 PM   #3
cwheat
Green Mole
 
Join Date: May 2004
Posts: 5
The problem is that phpdig keeps getting bounced to our login page. So it only is able to index 2 pages index.php and login.php

by having phpdig add the ?bypass=yes to the urls it will be able to bypass the securities.

Thanks
Chris
cwheat is offline   Reply With Quote
Old 05-20-2004, 05:35 PM   #4
vinyl-junkie
Purple Mole
 
Join Date: Jan 2004
Posts: 694
Sorry, I must have misunderstood what you were asking. Take a look at this thread and see if it helps. I think it's probably closer to what you need to know. Unless, of course, I'm way off base, which is entirely possible. If so, perhaps you could explain a little more what you're trying to do.
vinyl-junkie is offline   Reply With Quote
Old 05-21-2004, 07:16 AM   #5
cwheat
Green Mole
 
Join Date: May 2004
Posts: 5
I already tried the username:password@domain.com

it does not work. I am not using .htaccess to authenticate users I am using custom php code. Basicly if the username and password matches the database the auth script sets a varaible.

ie $goodauth=1

and at the top of ever page the scripting looks similar to:

if ($goodauth !== "1"){
headerlocation to login.php
} else {

page content

}


So to bypass this I need phpdig to add ?goodauth=1 to every url it tries to spider. Adding the ?goodauth=1 would bypass the login.

Thanks
Chris
cwheat is offline   Reply With Quote
Old 05-25-2004, 01:26 PM   #6
cwheat
Green Mole
 
Join Date: May 2004
Posts: 5
any one?
cwheat is offline   Reply With Quote
Old 05-25-2004, 05:03 PM   #7
vinyl-junkie
Purple Mole
 
Join Date: Jan 2004
Posts: 694
Um, can I take another stab at this?

Change your custom script to let the phpdig user-agent through without authentication. Here is a thread that talks about how that's defined in phpdig.

So what you'd have for authentication is something like this:
PHP Code:
if ($_SERVER['USER-AGENT'] == 'PhPDig'){
page content
} else {

if (
$goodauth !== "1"){
headerlocation to login.php
} else {

page content


Would that work for you?

You gotta give me an A for effort!
vinyl-junkie is offline   Reply With Quote
Old 05-26-2004, 10:15 AM   #8
cwheat
Green Mole
 
Join Date: May 2004
Posts: 5
A++++

THANK YOU!!!!!!!!!


Chris
cwheat is offline   Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
mg-eregi() again... premature end of char class... casimiro Troubleshooting 0 12-22-2005 03:05 AM
Undefined variable: user_agent noel Bug Tracker 6 10-30-2005 04:32 PM
Undefined Variable: $reg blackfeather Bug Tracker 2 05-01-2004 11:02 AM
Not recognising get variable pages BCVisin Troubleshooting 7 04-15-2004 10:42 PM
the end of the spider,... for me fr :: anonymus The Mole Hole 3 03-05-2004 12:27 AM


All times are GMT -8. The time now is 12:17 PM.


Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright © 2001 - 2005, ThinkDing LLC. All Rights Reserved.