Hi.
A client of ours wants some "b2b customer-only" pages on his site. I looked at the AUG's suggestion of using redirection via Javascript, and/or a META refresh, but this isn't robust enough.
I thought about sniffing the cookie vars, but I can't see any difference between cookies belonging to logged-in users, and cookies belonging to not-logged-in users. I see the session file is created as owner write-only too, so my script won't be able to poke around in there.
So... Can anyone suggest a method to determine, server-side, whether we have a logged-in user or not?
The other thing is - if I'm going to have to do this authentication myself outside of Catalog - what do I need to consider as far as maintaining this user's state? Will it be OK just to link back to the bb000001.pl script from my external pages and let it carry on, assuming I leave the cookie and session file unchanged?
Any help much appreciated.
A client of ours wants some "b2b customer-only" pages on his site. I looked at the AUG's suggestion of using redirection via Javascript, and/or a META refresh, but this isn't robust enough.
I thought about sniffing the cookie vars, but I can't see any difference between cookies belonging to logged-in users, and cookies belonging to not-logged-in users. I see the session file is created as owner write-only too, so my script won't be able to poke around in there.
So... Can anyone suggest a method to determine, server-side, whether we have a logged-in user or not?
The other thing is - if I'm going to have to do this authentication myself outside of Catalog - what do I need to consider as far as maintaining this user's state? Will it be OK just to link back to the bb000001.pl script from my external pages and let it carry on, assuming I leave the cookie and session file unchanged?
Any help much appreciated.
Comment