Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
How secure are header redirects? As I understand it, the header information instructs the browser what to do. Therefore, if the header location is set to some other place, can the browser still be made to land on the initial page?
if(!$loggedin){
header('Location: someotherpage.php')
}
If someone, (cough cough) forgot to use an exit command after the header, could someone still land on that page?
Sure – rather than land on that page (which he already has), forgetting an
exit()means the client can still see any data emitted after those lines. Nobody can force the client to leave immediately after receiving aLocation:header. That action is entirely voluntary.