URL Redirect when not logged in

**invitro** · Nov 4th, 2004, 08:52 PM

Allright, pretty much every page of mine has a function that checks if the user is logged in. It also checks if the user has the required access.

Now, what is the best way to return the user to a page if they get redirected to the unauthorized.asp page?

For example:
John wants to access admin.asp but is not logged in and is redirected to unauthroized.asp

Should I just be passing in the URL through a Query String? Or is this not a good way to do it.

**Danial** · Nov 5th, 2004, 07:08 AM

Hi Alek,
I tend to use Cookies or session to store the last page and redirect them if they are successfuly authenticated...

**mendhak** · Nov 5th, 2004, 07:09 AM

It's a very common way, no harm in doing it. Since each page checks for the authorization level, there's no harm in passing the URL to go to in the URL itself.

**Danial** · Nov 5th, 2004, 07:11 AM

Originally posted by mendhak
It's a very common way, no harm in doing it. Since each page checks for the authorization level, there's no harm in passing the URL to go to in the URL itself.

Yep, but sometime time if you need to pass over to 2/3 pages becore redirecting, it is better i think to use cookies/session instead of carrying over those pages. Personal preference i guess

.

**Ecniv** · Nov 8th, 2004, 04:34 AM

Can't you just have an 'unauthorised.asp' file which is located in the same place for all, or duplicated in each folder, then if they aren't logged in, it just redirects to that file, before sending anything into the browser.

Vince

Thread: URL Redirect when not logged in

Thread Tools

Display

URL Redirect when not logged in

Posting Permissions