Small width layout Medium width layout Maximum width layout Small text Medium text Large text
     Search
Downloads Downloads Directory Directory Forums Forums Forge Forge Blogs Blogs        Marketplace Marketplace Careers Program Careers
Community › Forums Register  |  

  Need Help?  
Professional technical support for DotNetNuke is available from DotNetNuke Corporation.
 


  Ads  
The best choice for your web site host, email hosting, and domain registration.
 


  Sponsors  

Meet Our Sponsors

Webhost4life, specialists in DNN hosting
Mad Development is a full service interactive agency focusing on the merge of design, technology, e-commerce, and affiliate marketing by providing total website solutions.
MadCap Software, Inc.
AspDotNetStoreFront - E-Commerce by Design - The Leading ASP.NET shopping cart platform for developers!
Click here to go to dev.live.com for Windows Live developer resources
SteadyRain
 


DotNetNuke Forums
 
  Forum  General DotNetN...  Extend It! ( Pr...  URL Expiration
Previous Previous
 
Next Next
New Post 2/1/2008 2:29 PM
Unresolved
User is offline Gary Bruno
9 posts
10th Ranked


URL Expiration 

Mass emailing links to orders, private product, etc is something I do. Customer places an order to something and they receive an email for it. Standard thing right. I do not require the customers to logon to view that "order link" they received in there email. The combination of order#/date-placed is enough that brute forces attack will never yield anything useful to someone trying to figure out what has been ordered from us. This all breaks if the user copy/pastes that URL to somewhere & that URL ends up in the public. I needed a way to make that URL expire after X days.

Does anyone see a problem with adding any additional URL parm like

?secexp/AW*D(JP(@#R*$@#

that contains the experation date encrypted by the DotNetNuke.PortalSecurity.Encrypt(string,string) method?

 

I would then tweak the DotNetNuke.HttpModules.UrlRewriteModule to look for & decrypt the secexp parm & throw an HttpException if the date was not valid. Anyone see a fast way to hack that?
 
 Page 1 of 1
Previous Previous
 
Next Next
  Forum  General DotNetN...  Extend It! ( Pr...  URL Expiration
 


Forum Policy

These Discussion Forums are dedicated to the discussion of the DotNetNuke Web Application Framework.

For the benefit of the community and to protect the integrity of the project, please observe the following posting guidelines:

1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DotNetNuke.
2. Discussion or promotion of DotNetNuke product releases under a different brand name are strictly prohibited.
3. No Flaming or Trolling.
4. No Profanity, Racism, or Prejudice.
5. Site Moderators have the final word on approving/removing a thread or post or comment.
6. English language posting only, please.
 


Powered by Adcuent®.Com
Adcuent® Consulting & Technology offers custom development web applications and hosting projects under the brand of Powered by Adcuent®.Com
www.adcuent.com 		Easily Build DNN Solutions with XMod
XMod makes it easy to build news articles, house listings, custom feedback forms, product reviews and much more - without programming
www.DNNDev.com 		Software Development and Integration with DNN
HNP Solutions focuses on the pragmatic use of technology and process to meet an organization's business objectives. HNP Solutions employs seasoned Enterprise and Solution Architects, Delivery Managers and QA & Business Leads. Our capabilities range from project assessments & recommendations, design & code reviews, to full program implementations. We also work with organizations in need of senior staff augmentation purposes in the areas of Enterprise and Solution architecture.
www.hnpsolutions.com

DotNetNuke Corporation   Terms Of Use  Privacy Statement
DotNetNuke®, DNN®, and the DotNetNuke logo are trademarks of DotNetNuke Corporation
Hosted by MaximumASP