ansaurus

Question

PHP, HTTP_REFERER not working on iframe??

Answer 1

+1 A:

In either case you're seeing the output of index.php. Here's why:

Scenario 1)

When you hit index.php from the link in test.php, it loads index.php (with test.php as the HTTP_REFERER).

Scenario 2)

When you hit iframe.php from the link in test.php, it loads iframe.php which internally loads index.php in the <iframe> tag (with iframe.php as the HTTP_REFERER).

Asaph 2009-12-18 04:12:57

Updated my question with the source code. Please take a look, see if there is anything wrong?

mysqllearner 2009-12-18 04:21:58

Updated my answer

Asaph 2009-12-18 04:28:01

No, the result is different. When i click on normal link, it display test.php(which is correct), but when i click iframe link, it displays iframe.php. Thats why I asking this question here. You have different result from me? May I know what OS and browser you are using?

mysqllearner 2009-12-18 04:33:29

Btw, I am using Windows Vista, and firefox 3.5.5 as my internet browser

mysqllearner 2009-12-18 04:34:12

Try to comment out the `<iframe>` tag in `iframe.php`. Now what happens?

Asaph 2009-12-18 04:40:49

Comment out iframe tag? Its blank now, i viewed source code, its blank as well. May I know what did you get? I tried this: I put in different file. I mean, normal link in test1.php and iframe link is test2.php. Same result as mine, 1 displays test.php, another displays iframe.php. I afraid, paul answer is right, "The HTTP_REFERER value for a page shown inside an iframe will always be the parent page that contained the iframe.", could you confirm this?

mysqllearner 2009-12-18 04:46:42

The reason I asked you to comment out the `<iframe>` was to prove to you that the output you were seeing when you hit `iframe.php` was in fact coming from `index.php` and being loaded via the `<iframe>` tag. Both @Paul and myself are telling you the same thing in different ways.

Asaph 2009-12-18 04:50:41

Ahhhh... I got it. So I cant use http_referer on iframe in this case. Thanks for the answer. I cant thank you enough. I will get back to my client now :)

mysqllearner 2009-12-18 04:54:53

Answer 2

A:

Unfortunately, no. The HTTP_REFERER value for a page shown inside an iframe will always be the parent page that contained the iframe.

HTTP_REFERER tends to be a little tricky to count on anyway. If you can avoid building any important logic around it, it's a good idea to do so.

I gather you're using php -- perhaps you could use session to store the last page visited when test.php loads? On test.php, you set $_SESSION['referringPage'] = 'test.php';. Then on index.php, you read the value of $_SESSION['referringPage'], and you get the same information regardless of whether the page was loaded within the iframe.

Paul 2009-12-18 04:24:12

Normally i use session. But this time, I cant do it. I will give my client only the link, example: <a href="iframe.php" target="_blank">This is Iframe</a>, I cant do much here. Or you have a better solution? My condition: give 1 link to client to detect previous URL.

mysqllearner 2009-12-18 04:27:22

@Paul: The `$_SESSION` approach you recommend is bug prone when you have multiple browser windows/tabs open. Different requests can overwrite each other's session values.

Asaph 2009-12-18 04:52:20

Ah.. I didnt notice that. But so far, I have not received any compaints yet. Gotta change the method asap. So, Asaph, whats the good way to do this? I mean get the previous URL??

mysqllearner 2009-12-18 05:01:09

ansaurus

tags:

views:

answers:

PHP, HTTP_REFERER not working on iframe??

related questions