Re: How do I POST data with headers & make the browser follow?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

If the information is sensitive, why are you trying to fake a POST submission? A POST can be received from anywhere. SSL is just encrypting it, not verifying the client is the same. I would use session variables to store information you need to access from page to page. That way you can verify that you are talking to the same computer from the first two pages. 


On Oct 6, 2005, at 5:52 AM, Ragnar wrote:



Hi guys/girls,
I have to apologize if this issue has been discussed in detail before but I 
couldn't find anything obvious so far.

What I need/want to do is to :

1. Take POST data from a form (no problem)
2. Do whatever i need to on the target page (no problem)
3. Pass some other data on to a 3rd page as a POST
   request.
4. Get the browser to follow to said 3rd page.


All this is happening via SSL.

So basically what i am trying to do is to "fake" whatever happens
at a normal POST request that is handled by the browser.

Now point 4. in my example above is giving me a massive headache,
I have managed to pass data on to the 3rd page as POST quite comfortably using cURL but the browser doesn't follow (ie. the URL in the address bar 
remains unchanged).
I did see that there is a FOLLOWLOCATION option you can set in cURL when you do you request, and though "wicked, just what I needed" only to find out that it's not working (probably because I understand what it does wrong).
Pretty pretty please if anyone knows a solution for the above, let me know.
Oh, and I'd also like to add that the information I am trying to get to the 3rd page in the example is sensitive (Credit Card details etc.), so $_GET 
and $_COOKIE are out of the question.

ANY help would be appreciated.

Kind regards,
Ben

--
5 GB Mailbox, 50 FreeSMS http://www.gmx.net/de/go/promail
+++ GMX - die erste Adresse für Mail, Message, More +++

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php





--
Brent Baisley
Systems Architect
Landover Associates, Inc.
Search & Advisory Services for Advanced Technology Environments
p: 212.759.6400/800.759.0577

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux