SkyRanger Posted October 18, 2007 Share Posted October 18, 2007 I tried posting this in the third party section, but it is not very active. Here is my problem: I am trying to find a site search script that will bypass the login session. I have tried a few third party scripts like isearch, sphider and a few others, I have also tried a couple of different cgi site search scripts also. When I try to get it to spider the members section it keeps redirecting back to the log in page and won't spider anything. Does anybody have any ideas of a search script that will be able to bypass this or a way to get around this? Link to comment https://forums.phpfreaks.com/topic/73791-site-search/ Share on other sites More sharing options...
MadTechie Posted October 18, 2007 Share Posted October 18, 2007 bypass the login session!! erm normally you give the spider an account for crawling your site.. no by pass needed.. also please don't double post.. (this is my last post in this thread) Link to comment https://forums.phpfreaks.com/topic/73791-site-search/#findComment-372280 Share on other sites More sharing options...
SkyRanger Posted October 18, 2007 Author Share Posted October 18, 2007 Thanks MadTechie. I didn't want to double post but I noticed that the third part section doesn't get very much traffic, and I have been beating my head off the keyboard trying to find a way around this problem. I use a PHP/MySQL login script, thanks for the input. Link to comment https://forums.phpfreaks.com/topic/73791-site-search/#findComment-372289 Share on other sites More sharing options...
SkyRanger Posted October 18, 2007 Author Share Posted October 18, 2007 Ok, not sure how to get around this. When I spider my site it keeps getting pushed to the login page. I script I am using is isearch (Yeah I know this should be in third party scripts...sorry). Not sure how I can get around this. When the spider starts it hits this : if($session->logged_in){ $loggedin = $session->username; codehere } else { header("Location: login.php"); } and another page is: include "../include/session.php"; if ($_SESSION['logged_in'] == '') $loggedin = $_SESSION['username']; if($session-> userlevel >= 4 && $session-> userlevel <= 9) { codehere } else { header("Location: login.php"); } Link to comment https://forums.phpfreaks.com/topic/73791-site-search/#findComment-372403 Share on other sites More sharing options...
MadTechie Posted October 18, 2007 Share Posted October 18, 2007 OK.. so when you spider your site.. make sure your logged in first! Link to comment https://forums.phpfreaks.com/topic/73791-site-search/#findComment-372533 Share on other sites More sharing options...
BlueSkyIS Posted October 18, 2007 Share Posted October 18, 2007 the way i managed to have an automated spider run through password-protected pages was to add a value to the end of each URL spidered. For instance, if the next secure page is userpage.php, i would add a piece on to the URL that tells userpage.php to NOT authenticate the user, ala "userpage.php?spidersearch=".date(); then i added code to the site authentication that says "don't require login if $_GET['spidersearch'] = today". the security issue is obvious, but good luck on someone figuring out that 1. they need to add to the URL to bypass login and 2. WHAT they need to add to the URL to bypass login. Link to comment https://forums.phpfreaks.com/topic/73791-site-search/#findComment-372540 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.