anatomy of a url
-
I actually consider myself to be at least an intermediate developer, and am a little embarrassed to admit that I never put much thought into something that has stared me in the face for years. Can anyone tell me what the portion of the url inside the parenthesis is? It's not part of any url that we redirect to within our application. I had thought it was the address of a cached page, generated within IIS, but I've spent hours trying to find out more about it, in hopes of finding a way for it to not be displayed in my address bar. Our client accidentally emailed the path similar to the one below to many people as a appropriate place to link to. But, it seems that in doing that, people that normally would have less access to the application, gain administrator rights to the application if they are lucky enough to click the link at exactly the same time an administrator clicks the link and authenticates the site. I thought it might be a matter of assuming some of the same session variables as the admin has when visiting a cached page. But, after much failed research, I assumed that maybe I'm just way off base here. Can anyone tell me more about what I'm dealing with here? http://dth.tradoc.army.mil/(z42edx554nuvvsimzr2iwj3x)/EnterDTH.aspx V/r, Chad Baker.
Chad Baker Fort Monroe, VA
-
I actually consider myself to be at least an intermediate developer, and am a little embarrassed to admit that I never put much thought into something that has stared me in the face for years. Can anyone tell me what the portion of the url inside the parenthesis is? It's not part of any url that we redirect to within our application. I had thought it was the address of a cached page, generated within IIS, but I've spent hours trying to find out more about it, in hopes of finding a way for it to not be displayed in my address bar. Our client accidentally emailed the path similar to the one below to many people as a appropriate place to link to. But, it seems that in doing that, people that normally would have less access to the application, gain administrator rights to the application if they are lucky enough to click the link at exactly the same time an administrator clicks the link and authenticates the site. I thought it might be a matter of assuming some of the same session variables as the admin has when visiting a cached page. But, after much failed research, I assumed that maybe I'm just way off base here. Can anyone tell me more about what I'm dealing with here? http://dth.tradoc.army.mil/(z42edx554nuvvsimzr2iwj3x)/EnterDTH.aspx V/r, Chad Baker.
Chad Baker Fort Monroe, VA
http://www.codeproject.com/aspnet/ASPNETSession.asp
I'm not a player, I just code a lot! Alex Dresko
-
http://www.codeproject.com/aspnet/ASPNETSession.asp
I'm not a player, I just code a lot! Alex Dresko
-
I actually consider myself to be at least an intermediate developer, and am a little embarrassed to admit that I never put much thought into something that has stared me in the face for years. Can anyone tell me what the portion of the url inside the parenthesis is? It's not part of any url that we redirect to within our application. I had thought it was the address of a cached page, generated within IIS, but I've spent hours trying to find out more about it, in hopes of finding a way for it to not be displayed in my address bar. Our client accidentally emailed the path similar to the one below to many people as a appropriate place to link to. But, it seems that in doing that, people that normally would have less access to the application, gain administrator rights to the application if they are lucky enough to click the link at exactly the same time an administrator clicks the link and authenticates the site. I thought it might be a matter of assuming some of the same session variables as the admin has when visiting a cached page. But, after much failed research, I assumed that maybe I'm just way off base here. Can anyone tell me more about what I'm dealing with here? http://dth.tradoc.army.mil/(z42edx554nuvvsimzr2iwj3x)/EnterDTH.aspx V/r, Chad Baker.
Chad Baker Fort Monroe, VA
Would guess from the symptoms that is's a session identifier of some sort - which explains the difference in functionality you're seeing
"Now I guess I'll sit back and watch people misinterpret what I just said......" Christian Graus At The Soapbox