Reputation: 111
how to prevent user from access to main page if he wasn't logged in?
I am using js vanilla with html and pure php
I made sign up and login pages with database.
when user logged in login page successfully, it will execute
sessionStorage.setItem('logged',"loggedIn");
then redirect user to ' / ' the main page.
Everything is good until now.
However, if I changed the URL manually it would access to main page directly!
so how to check if user logged in before loading main page?
I realised I should use sessionStorage.getItem and check it but where I should use it in js?
Upvotes: 1
Views: 1211
Answers (1)
Reputation: 111
Could you elaborate? Is this a REST API you are making requests to?
If so then in your front end on the index.html page, include a script tag where you run a conditional regarding the loggedIn session you are storing.
If the session does not exist then redirect them to the login page (i.e window.location.href = "/login").
For such use cases, React is a great option to consider, just putting it out there.
I'd like to mention however, this is a very Insecure way of verifying the users authorization. Use a JWT.
Upvotes: 1
Related Questions
- PHP, Prevent users from accessing a page while not logged in?
- How to only make page accessible if user is logged in using php
- How to make an page only accessible when logged in PHP
- Prevent user to access if has not logged in
- how to stop direct access a page without login in php
- How to prevent someone from acessing an html page, unless they have a login?
- How to disallow the user to access my home page when not logged in
- php disable user to access certain page unless login
- How to deny access to a certain page if the user is not logged in?
- How to restrict users from entering a page without being logged on