Dreamweaver

Redirect unauthorized users (ColdFusion, ASP, JSP, PHP)

To prevent unauthorized users from accessing a page, add a Restrict Access To Page server behavior to it. The server behavior redirects the user to another page if the user attempts to bypass the login page by typing the protected page’s URL in a browser, or if the user is logged in but attempts to access the protected page without the proper access privileges.

Note: The Restrict Access To Page server behavior can only protect HTML pages. It does not protect other site resources such as image files and audio files.

If you want to give many pages on your site the same access rights, you can copy and paste access rights from one page to another.

Redirect unauthorized users to another page

  1. Open the page you want to protect.
  2. In the Server Behaviors panel (Window > Server Behaviors), click the Plus (+) button and select User Authentication > Restrict Access To Page from the pop‑up menu.
  3. Select the level of access for the page. To allow only users with certain access privileges to view the page, select the Username, Password, and Access Level option and specify the authorization levels for the page.

    For example, you can specify that only users with Administrator privileges can view the page by selecting Administrator in the authorization levels list.

  4. To add authorization levels to the list, click Define. In the Define Access Levels list that appears, enter a new authorization level, and click the Plus (+) button. The new authorization level is stored for use with other pages.

    Ensure that the string for the authorization level matches exactly the string stored in your user database. For example, if the authorization column in your database contains the value “Administrator”, enter Administrator , not Admin , in the Name box.

  5. To set more than one authorization level for a page, Control‑click (Windows) or Command-click (Macintosh) the levels in the list.

    For example, you can specify that any user with Guest, Member, or Administrator privileges can view the page.

  6. Specify the page to open if an unauthorized user attempts to open the protected page.

    Ensure that the page you choose is not protected.

  7. Click OK.

Copy and paste a page’s access rights to other pages on the site

  1. Open the protected page and select the Restrict Access To Page server behavior listed in the Server Behaviors panel (not the one in the Plus (+) pop‑up menu).
  2. Click the arrow button in the upper-right corner of the panel, and select Copy from the pop‑up menu.

    The Restrict Access To Page server behavior is copied to your system’s Clipboard.

  3. Open another page you want to protect in the same way.
  4. In the Server Behaviors panel (Window > Server Behaviors), click the arrow button in the upper-right corner, and select Paste from the pop‑up menu.
  5. Repeat steps 3 and 4 for each page you want to protect.