拒绝直接访问根目录中的php文件
我有一个网站项目,其中每个页面的右侧都是从拒绝直接访问根目录中的php文件,php,html,include-path,Php,Html,Include Path,我有一个网站项目,其中每个页面的右侧都是从includes文件夹调用的,该文件夹包含一个输入字段和一个按钮。用户单击按钮后,将运行php脚本,并根据脚本的结果将用户重定向到thankyou success.php或thankyou failure.php文件。这些文件位于根文件夹中。我希望防止用户直接键入指向这些路径的url并直接看到成功或失败消息。如何防止用户直接访问 目前,我正在重定向到以下文件: //if found this email in our database if($count
includesthankyou success.phpthankyou failure.php成功失败//if found this email in our database
if($count==1)
{
header('Location: thankyou-success.php');
}
else
{
//echo "Cannot send Confirmation link to your e-mail address";
header('Location: thankyou-failure.php');
}
<body>
<!-- header start here -->
<?php include("includes/header.php") ?>
<!-- header end here -->
<!-- page title start here -->
<section id="pagetitle-container">
<div class="row">
<div class="twelve columns">
<div id="pagetitle-border">
<div id="breadcrumb">
<ul>
<i class="fa fa-caret-right"></i>
<li><a href="index.php">Home</a></li>
</ul>
</div>
<p> <br></p>
<div class="twelve columns">
<p>Unable to send the activation email to the email address provided. Please confirm and try again.</p>
</div>
</div>
</div>
</section>
<!-- page title end here -->
<!-- content section start here -->
<section id="content-wrapper">
<div class="row">
</div>
</div>
</section>
<!-- content section end here -->
<footer>
<?php include("includes/footer.php") ?>
</footer>
<script>$('#noscript').remove();</script>
<!-- pageloader part 2 start -->
<!-- pageloader part 2 ends -->
</body>
</html>
//if found this email in our database
if($count==1)
{
header('Location: thankyou-success.php');
}
else
{
//echo "Cannot send Confirmation link to your e-mail address";
header('Location: thankyou-failure.php');
}
<body>
<!-- header start here -->
<?php include("includes/header.php") ?>
<!-- header end here -->
<!-- page title start here -->
<section id="pagetitle-container">
<div class="row">
<div class="twelve columns">
<div id="pagetitle-border">
<div id="breadcrumb">
<ul>
<i class="fa fa-caret-right"></i>
<li><a href="index.php">Home</a></li>
</ul>
</div>
<p> <br></p>
<div class="twelve columns">
<p>Unable to send the activation email to the email address provided. Please confirm and try again.</p>
</div>
</div>
</div>
</section>
<!-- page title end here -->
<!-- content section start here -->
<section id="content-wrapper">
<div class="row">
</div>
</div>
</section>
<!-- content section end here -->
<footer>
<?php include("includes/footer.php") ?>
</footer>
<script>$('#noscript').remove();</script>
<!-- pageloader part 2 start -->
<!-- pageloader part 2 ends -->
</body>
</html>
无法将激活电子邮件发送到提供的电子邮件地址。请确认并重试
$(“#noscript”).remove();
/var/www/website/public/var/www/website/files/if ($success) {
include(dirname(__FILE__) . '/../files/thankyou-success.php';
} else {
include(dirname(__FILE__) . '/../files/thankyou-failure.php';
}
一种方法是使用$\u会话。提交表格后,您可以:
$_SESSION['result'] = TRUE;
if ($_SESSION['result']) {
echo "Success";
unset($_SESSION['result']);
}
else {
echo "How did you get here?";
}
$_SESSION['result'] = TRUE;
if ($_SESSION['result']) {
echo "Success";
unset($_SESSION['result']);
}
else {
echo "How did you get here?";
}
使用会话。如果会话设置为允许用户访问页面。其他明智的做法是不。^与减少会话的使用开销相比,只需在主脚本中设置一个变量,并在任何包含的文件顶部检查它,正如这里的第一个回答:您能简要介绍一下
谢谢失败.php谢谢成功.phpEdit