How would you do this?

[bigdessert]

Basically i am setting up a testing site using igivetest.  I want it so that a client pays for a test.  Then gets directed to the registration page build into igivetest.  Then they can register and take the test.

If someone stumbles onto my test page i want it so that they cannot access the registration.

Basically for now i have it so that after a client pays they get redirected to a temp page that inserts a code into mysql database.  Then it only shows the registration page if that "code" is present.  After the user registers, it removes the "code" from the database.

Is this the best and safest way to prevent unpaid registrations or is there something better??

I kind of want to make it so that this is shopping cart independent as I have not decided on a cart yet.

Thanks,

[complex05]

If they are only going to be using the test right after purchasing, on the purchase page you should set a $_SESSION variable and check for it.

If they purchase and use it 3 days later, I would recommend setting a cookie and checking for it.

If all else fails, generate a username/password when they purchase and have them login to access your test page. Any unprotected page will eventually get hit by the googlebot.

[bigdessert]

They would be registering right after payment.  During registration they do create a username/password.  When they create this, they can log into the site 3 days later to take the test.  So i suppose the session would work. Do i need to store the session in a database, or is this something that is just passed on.

[bigdessert]

bump

[corbin]

I would log them into the username that they create when they create it.  Of course the session would be long gone three days later, but you could allow them to log back in and remake the session.