Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I want to protect a directory and the php files in it, from direct web access through an .htaccess file like this:
IndexIgnore *
<Files ~ "\.(php)$">
order allow,deny
deny from all
</Files>
but I want to be able to send ajax requests from a javascript file to those php files an get a result. Is this possible?
You can only allow POST-requests. Accessing the page from the browser results in an error code, but posting from ajax works. See here.
Note: this qualifies as security through obscurity. If someone looks at your javascript, they’ll find out how to get the page results.