I'd like to create
/admin.php page, which would have AJAX request, sent over to
/core/adm/index.php, that's easy, basic AJAX request will do just that. But I don't want any direct access to
/core/adm/index.php, I want it to be accessed only by AJAX request from
Is there a way to forbid any other access? Answer is not, it's never possible to fully block someone off, while you're connected to internet. But is there a way to make it cost quite some effort? If it will cost 5 minutes of effort and jungling through the code, it will probably block off 90% of people out there.
For example, if I want to make someone pay lots of effort to get my logo. I make
<img src="pixel.png" id="thelogo" /> and then in CSS, I would assign base64 based image with
Back to my case, is there a way to make someone take lots of effort to get to
/core/adm/index.php any other way? Something that will say "Do not let ANYBODY see any data from you. Except, exclusively from
localhost/admin.php's AJAX ONLY
It's not like page itself contains something that can't be revealed (
SESSION's will solve that).
Edited by Aeonix