guyfromfl Posted March 4, 2011 Share Posted March 4, 2011 I am trying to protect a file that has access to sensitive data. Basically what I am looking for is a way to check that only $_GET['lead'] is passed to the document. Is there a way to determine if #1 only lead is passed, and #2 what other variables might be sent in a GET request? I am emailing a confirmation email to our clients, that has only the lead variable in the provided link. I want to check against something like" http://website/phpfile?lead=124&foo=bar Where I can throw an error because foo was passed. Quote Link to comment Share on other sites More sharing options...
kenrbnsn Posted March 4, 2011 Share Posted March 4, 2011 $_GET is an array, so you can do something like this: <?php $error = false; foreach ($_GET as $k=>$v) { if ($k != 'lead') { $error = true; } } if ($error) { echo 'This page was invoked incorrectly'; } else { // // do your processing // } ?> Ken Quote Link to comment Share on other sites More sharing options...
guyfromfl Posted March 4, 2011 Author Share Posted March 4, 2011 Ken, Thanks! That looks like exactly what I was looking for. Thanks alot! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.