-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gentil de Bortoli Júnior wrote: > I have a little problem here and I would like to know if you > have any idea about how to handle it. > > I have an URL which is streaming a live TV channel and I need to > implement, using PHP, some kind of validation to allow that only > one person (login) watch it. I mean, multiple logins are not allowed. > > So far, so good. > > My problem is that the URL can be copied and pasted. I'm trying to > figure it out how to hide and/or protect this URL to permit only > logged in people can see the streaming. > > Do you have any idea? David Tulloh wrote: > It's a fairly standard authentication problem. > I would solve it by using sessions. > > In the page and video stream start by checking for an authenticated > flag in the session array. If the flag is present, display the > content. > If not, show a login page. When they login, set the authenticated > flag and redirect them back to their original page. > > As you want to have people copy and paste the url, make sure that > you set the use_only_cookies flag in the php config. Otherwise the > session id may be part of the URL and defeat your authentication. > > David Hi, David. Excuse me. I'll try to explain it better. Let's suppose my URL is "mms://my.windows.server/live". I got your point. In fact, if I had control over that URL, it would be nice. But the problem is that once someone starts to watch the streaming, a right click on the video will reveal the original address from which that transmission is being made. I'm trying to find a way to "encapsulate" this address and show only something like http://my.linux.server/live.php?auth_code=1238478653. I mean, the script live.php should be responsible to deliver the streaming instead of "mms://my.windows.server/live". In that way I can easily control everything. - -- Gentil de Bortoli Júnior Chave GPG: http://gentil.bortoli.com.br/gpg "There Is No Gene For The Human Spirit" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFEEEO9R/xCJbtXupkRAohmAJ4jnMOWEuRqp8wTwEEcH0nvWCtB5QCfWcIL Cgm+uCySeBp+QpqqoCMEv4w= =7R/g -----END PGP SIGNATURE----- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
