Hi All- I'm designing a "Portal" environment for a very large number of organisations and it necessitates having a central server where users initially login and have access to a few functions.
For the more complex functions where it is necessary to redirect them to another server, local to them, I have a problem. I can redirect fine but how do I validate that user? At the moment I'm passing through the username and password on the redirect URL but that is no good as Internet Explorer shows that URL in the status bar as it is redirecting. Someone looking over another person's shoulder could see their login and password. I'm looking for ideas on how to securely transfer users between these two separate websites? It is unfortunately not an option to have them login twice. Regards, Adam Whitehead Systems Developer - Computer Support and Maintenance Ph. (08) 8936 3164 E-mail: [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
