As you might be wondering what do i mean by direct access, by direct access i mean, to access directly to the file (example: www.yoursite.com/includes/file.php)...

Step 1
------------------------------------------
Now, for limiting direct access to those files you wanna protect from being access without being on your index for example, what we have to do is add a define on our index by adding this at the start of your code:

where it says ON_OUR_SITE you can change it for whatever you want...


Step 2
------------------------------------------
after completing step 1, at the start of the code of each page you want to protect from being directly accessed you have to add something like this:

where it says ON_OUR_SITE you have to change it to whatever you put on your index...


so that is all you have to do... that will say "Don't waste your time trying to access this file" to who ever tries to access your protect files directly, but it will show it's content on your index without any problem.

Very simple, but nice

- Adam

Hey nice job stealing this tutorial.

http://www.webdesigndev.com/tutorial/45

Go steal some more why don't you. Loser.

well i made this tutorial before that one
http://php4all.org/nav-tutorials-showtut-true-tid-90.html

everybody uses that, including phpbb i dont know if its a rip

That was very childish. For such a generic tutorial, there are bound to be copies. Just because your site has one version does not mean that others cannot. While there are copyrights on content, just because content appears to be duplicated does not mean it has been.

du

Alot of people use this. All he's trying to do is help spread the idea. It's not like there's only 1 tutorial on making a stylish layout in photoshop is there? It's not ripped [Period]

My apologies then. If the intention was to just inform users of the concept, by all means go for it. It's not my site anyways, I just passed over it the other day. Once again, sorry about this misconception.

Everyone makes mistakes.

That's a method used by all programmers. Even IPB forums has it. Nice job spreading the idea!

really cool idea I never even thought about it. When I'm done on "vacation" (no web coding for a few weeks hah) I am going to update my latest site include files with this method.

great! it's good to hear that this tut is useful

PLEASE HELP

I've made a test an does not work
In a folder I've created two files Index.php & SecondPage.php





Like Im accesing the secondpage by clicking a link and not by typing the address in the browser, think it have to work, but it seems "ON_OUR_SITE" is no passed and not defined to the SecondPage, Why?
What is the error?

Please Im new here and working PHP, can anyone help me

Thanks in advance

For that to work index.php would have to be included in secondpage.php like so: above your conditional.

Thanks Matthew it seems to work now, it returns me the page loaded when I click on the link, but it really does not work cause when I type the address on the browser it returns me the page loaded too.

Anyone could access the page directly.

Any idea?

I would assume it has a link to secondpage.php on secondpage.php right? and that is not wantedi guess so you will need to put in another file (seperate to index.php) and include it with secondpage.php and index.php

nice and simple.. thanks

Very interesting tutorial =), Its quite useful. But could'nt you just use .htaccess?

phpbb use it as well



the define command doesn't just need to be used for passwords, it could be used in multiple part forms to make sure the users done the previous part. It could be used to define a global variable even though sessions variables would be a better idea in that case.

Arutha