Home/ Questions/Q 6580921
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-25T16:05:17+00:00

so what I would like to do is have a link on an external

  • 0

so what I would like to do is have a link on an external website (example: externalsite.com) that will go to mywebsite.com/page.php, and I need to make it so ONLY clicking on the link from externalsite.com will allow you to access mywebsite.com/page.php.
The user cannot simply type it in their browser to get there, how would I go about doing this?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Given that no method is 100% secure, I’ll show you a very easy, overtly insecure method that will work in any framework because it’s pure JavaScript. Keep in mind that this is designed to work only as a general rule and is in no way “hacker proof”.

    Simply add this script to your mywebsite.com/page.php. It will redirect any request that isn’t referred by a page on externalside.com.

    var referrer = document.referrer;
referrer = referrer.toLowerCase();
if (referrer.indexOf("/externalsite.com") == -1) && referrer.indexOf(".externalsite.com") == -1) {
    window.location.href = "http://mysite.com/accessdenied.php"
} else {
    document.findElementById("myBody").style.display = "block";
}

    To get around the whole “if you disable JavaScript, this doesn’t work, you idiot” dilemma, add id="myBody" style="display: none;" to your page’s <body> tag: the page will not be displayed unless JavaScript is enabled and validates the referring URL. Also, I’m not an idiot.

    There are several ways to bypass this method: spoof the referring url, use FireBug to remove display: none, view the source of the page and recreate it on your local machine, etc. This method is more of a deterrent than a security feature.

    • 0