How to restrict certain files from being open directly from the url / how to secure 'include' files
Question
I have various files which are included in one php page by the line: include'blahblah.php';
I am unable to figure out how to block direct access to these files from the address bar!
for example:
Anyone after looking at my source code can try to open the file 'blahblah.php' by typing in the address bar: http://www.mydomain.com/mydir/blahblah.php
How do i restrict people from doing so?
Thanks in Advance!
Solution
the classic way of doing this is by using define and defined functions, in the main page you do some
define('pagescope', 'true');
And then on the included
if (!defined('pagescope')) die('nooooooo you cant');
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow