: Verifying that a user comes from a 'partner' site? We're building a Drupal module that is going to be given to trusted 'corporate partners'. When a user clicks on a link, he should be redirected

Posted in: #Http #HttpHeaders #Https #Referrer

We're building a Drupal module that is going to be given to trusted 'corporate partners'. When a user clicks on a link, he should be redirected to our site as if he's a logged in user.

How should I verify that the user is indeed coming from that site? It does not look like 'HTTP_REFERER' is enough because it appears it can be faked.

We are providing these partner sites with API Keys. If I receive the API-key as a POST value, sent over https, would that be a sufficient indicator that the user is a genuine partner-site user?

10.02% popularity Vote Up Vote Down

: Free user submitted plugins/themes manager for software project I am looking for a plugin/themes manager that users will be submitting. Pretty much I would like to have something like these: http://www.winamp.com/plugins/

@Rambettina238

Posted in: #Cms

1 Comments

: How can I call a URL as a cron job in Webmin? (Possibly this belongs on stackoverflow, although it's not really a programming issue since the code works when run directly. If it needs to

@Rambettina238

Posted in: #ControlPanel #Cron #Php #Webmin

1 Comments

: Are there any table-chart creating websites? I want to embed a table on my website similar to this one: http://www.footballsfuture.com/2011/combine/qb.html My website editor does not have a table

@Rambettina238

Posted in: #Embed #Table

1 Comments

: New site. Tons of traffic from Google. Nothing from Yahoo or Bing. What gives? I've launched a number of sites recently (8-12 weeks) that are getting tons of traffic from google search at an

@Rambettina238

Posted in: #Search #Seo #Startup

1 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Pope3001725

If a unique login and password combination is sent over https and those credentials are valid then that is a secure way to confirm a partner's identity. That's how most APIs work including those of payment processing companies.

10% popularity Vote Up Vote Down

Feed

: Verifying that a user comes from a 'partner' site? We're building a Drupal module that is going to be given to trusted 'corporate partners'. When a user clicks on a link, he should be redirected

More posts by @Rambettina238

: Free user submitted plugins/themes manager for software project I am looking for a plugin/themes manager that users will be submitting. Pretty much I would like to have something like these: http://www.winamp.com/plugins/

: How can I call a URL as a cron job in Webmin? (Possibly this belongs on stackoverflow, although it's not really a programming issue since the code works when run directly. If it needs to

: Are there any table-chart creating websites? I want to embed a table on my website similar to this one: http://www.footballsfuture.com/2011/combine/qb.html My website editor does not have a table

: New site. Tons of traffic from Google. Nothing from Yahoo or Bing. What gives? I've launched a number of sites recently (8-12 weeks) that are getting tons of traffic from google search at an

Login to post a comment!

1 Comments

Back to top | Use Dark Theme