帮助 - 通过记住用户来保护页面？ [英] Help - Secure page by remembering user?

问题描述

请帮助。


经过多次错误的转弯和实验后，我需要登录

管理系统的建议来保护我们的网页，而不会给我们带来不便br />
访客或我们的内部员工。


我需要什么：


用户只需注册的系统ONCE和他将自动进入任意页面，即使他在两周后进入

或通过电子邮件链接直接进入该页面，也无需重新登录即可自动进入任何页面。


这个场景似乎建立在黄金盒子的亚马逊模型上，

会自动通过cookie记住你。


如果用户没有cookie，他必须重新登录。


任何人都可以帮我识别这样做的第三方产品或通往
在我的代码中实现这个....


非常感谢

Jason

Please help.

After a number of wrong turns and experiments I need advice on login
management system to secure our web pages without inconveniencing our
visitors or our internal staff.

What I need:

A system whereby the user only has to register ONCE and he will have
automatic entry to ANY page without havinto to RE-LOGIN even if he comes in
two weeks later or comes directly to that page via an email link.

This scenario seems built on the Amazon model of the ''gold box'' which
automatically remembers you through cookies.

If the user does not have cookies he has to re-login.

Can anyone help me identify a 3rd party product that does this or a route to
achieve this in my code....

Many thanks
Jason

推荐答案

你只需要使用饼干要记住它们。


请记住，使用该电脑的任何人都可以访问页面

。


Bob Lehmann


< ja *** @ catamaranco.com>在消息中写道

news：u0 ************** @ TK2MSFTNGP10.phx.gbl ...

You would just have to use cookies to remember them.

Keep in mind though, that anyone who uses that computer will have access to
the pages also.

Bob Lehmann

<ja***@catamaranco.com> wrote in message
news:u0**************@TK2MSFTNGP10.phx.gbl...

请帮忙。经过多次错误的转弯和实验后，我需要登录
管理系统的建议来保护我们的网页，而不会给我们的访客或内部员工造成不便。
我需要的是：

一个系统，用户只需要注册ONCE，他就会自动进入任何页面而不需要重新登录即使他来
两周后或通过电子邮件链接直接进入该页面。

这个场景似乎建立在''金盒'的亚马逊模型上，它会自动通过cookie记住你。

如果用户没有cookie，他必须重新登录。

任何人都可以帮我识别这样做的第三方产品或路线
到在我的代码中实现这一点....

非常感谢Jason

Please help.

After a number of wrong turns and experiments I need advice on login
management system to secure our web pages without inconveniencing our
visitors or our internal staff.

What I need:

A system whereby the user only has to register ONCE and he will have
automatic entry to ANY page without havinto to RE-LOGIN even if he comes in two weeks later or comes directly to that page via an email link.

This scenario seems built on the Amazon model of the ''gold box'' which
automatically remembers you through cookies.

If the user does not have cookies he has to re-login.

Can anyone help me identify a 3rd party product that does this or a route to achieve this in my code....

Many thanks
Jason

已经提到过，你很可能需要使用cookies来支付这个。/ b / b
然而，你想要做的事情并不是因为它被推荐将是一个巨大的b
安全风险（部分原因是，正如鲍勃提到的那样，每个人用b / b
使用过用户计算机，也可以访问这些页面）。 br />

出于兴趣，为什么不让他们每次登录时登录

安全区域？ （您想要保护的页面可以轻松检查

确保允许它们（通过会话ID或cookie），如果允许

，允许他们访问......如果没有，请将他们引导至登录页面。


-


问候


Steven Burn

Ur IT Mate Group
www.it-mate.co.uk


保持免费！

< ja *** @ catamaranco.com>在消息中写道

news：u0 ************** @ TK2MSFTNGP10.phx.gbl ...

As has been mentioned already, you''d most likely need to use cookies for
this.

However, what you are wanting to do is not reccomended as it would be a huge
security risk (partially due to the fact, as Bob mentioned, everyone that
used the users computer, would have access to the pages aswell).

Out of interest, why not just have them login each time they want to access
the secure area? (the pages that you want protected could easily check to
make sure they are permitted (either via a session ID, or a cookie) and if
permitted, allow them access... if not, direct them to the login page)

--

Regards

Steven Burn
Ur I.T. Mate Group
www.it-mate.co.uk

Keeping it FREE!
<ja***@catamaranco.com> wrote in message
news:u0**************@TK2MSFTNGP10.phx.gbl...

请帮忙。经过多次错误的转弯和实验后，我需要登录
管理系统的建议来保护我们的网页，而不会给我们的访客或内部员工造成不便。
我需要的是：

一个系统，用户只需要注册ONCE，他就会自动进入任何页面而不需要重新登录即使他来
两周后或通过电子邮件链接直接进入该页面。

这个场景似乎建立在''金盒'的亚马逊模型上，它会自动通过cookie记住你。

如果用户没有cookie，他必须重新登录。

任何人都可以帮我识别这样做的第三方产品或路线
到在我的代码中实现这一点....

非常感谢
Jason

Please help.

After a number of wrong turns and experiments I need advice on login
management system to secure our web pages without inconveniencing our
visitors or our internal staff.

What I need:

A system whereby the user only has to register ONCE and he will have
automatic entry to ANY page without havinto to RE-LOGIN even if he comes in two weeks later or comes directly to that page via an email link.

This scenario seems built on the Amazon model of the ''gold box'' which
automatically remembers you through cookies.

If the user does not have cookies he has to re-login.

Can anyone help me identify a 3rd party product that does this or a route to achieve this in my code....

Many thanks
Jason

谢谢，Yip，我猜到饼干就是答案....但是这些曲线怎么样？
球：


1.饼干关闭......用户然后会看到登录界面...我是

只对电子邮件感兴趣 - 而不是密码。


2.在哪里准确建立cookie脚本......这是使用会话变量的

吗？但我认为

会话变量是特定时间的，即它们仅默认持续20

分钟为用户.....


3.我记得在我的代码中一段时间​​后测试了一些饼干，我发现它很可怕我不得不删除互联网选项上的cookies

每当我改变一些代码....是否有更好的方法来测试

应用程序，而测试期间没有cookie成为负债？

流程？


真的提出建议......


- Jason


" Bob Lehmann" <无>在消息中写道

news：uN ************** @ TK2MSFTNGP12.phx.gbl ...

Thanks,Yip, I guessed cookies was the answer....but what about these curve
balls:

1. Cookies off....will the user then be presented with login screen...I am
only interested in email - not password.

2. Where does one exactly establish the cookies in the script...is this the
same as using Session Variables? But I thought
session variables were time-specific ie they only lasted by default for 20
minutes for a user.....

3. I remember testing cookies a while back in my code and I found it
frustrating that I had to delete cookies off internet options
whenever I changed some code....is there a better way to test the
applications, without cookies becoming a liability during the testing
process?

Really appeciate advice...

- Jason

"Bob Lehmann" <none> wrote in message
news:uN**************@TK2MSFTNGP12.phx.gbl...

你只需要使用cookies来记住它们。

请记住，使用该计算机的任何人都可以访问页面
。

Bob Lehmann
< ja *** @ catamaranco.com>在消息中写道
新闻：u0 ************** @ TK2MSFTNGP10.phx.gbl ...

You would just have to use cookies to remember them.

Keep in mind though, that anyone who uses that computer will have access to the pages also.

Bob Lehmann

<ja***@catamaranco.com> wrote in message
news:u0**************@TK2MSFTNGP10.phx.gbl...

请帮忙。
管理系统的建议来保护我们的网页，而不会给我们的访客或我们的内部员工带来不便。

我需要什么：

一个系统，用户只需要注册ONCE，即使他进入

Please help.

After a number of wrong turns and experiments I need advice on login
management system to secure our web pages without inconveniencing our
visitors or our internal staff.

What I need:

A system whereby the user only has to register ONCE and he will have
automatic entry to ANY page without havinto to RE-LOGIN even if he comes in

两周后或通过电子邮件链接直接进入该页面。

这个场景似乎建立在''金盒'的亚马逊模型上，它会自动通过cookie记住你。

如果用户没有cookie，他必须重新登录。

任何人都可以帮我识别出这样做的第三方产品或者

two weeks later or comes directly to that page via an email link.

This scenario seems built on the Amazon model of the ''gold box'' which
automatically remembers you through cookies.

If the user does not have cookies he has to re-login.

Can anyone help me identify a 3rd party product that does this or a

路由到

route to

在我的代码中实现这个....
非常感谢Jason

achieve this in my code....

Many thanks
Jason

这篇关于帮助 - 通过记住用户来保护页面？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！