header - how to make sure POST data comes from specific domain? -


I have a page confirm_payment.php Getting mail data from other pages. How can I ensure that this post data comes from a specific domain only?

I can not trust the IP address as if it can change in my case I want to avoid "fake" submissions from my "confirm_payment.php server side code".

Without going into details, it is to ensure that my page receives the confirmation of the hosted page from the payment gateway and the confirmation is valid.

John Condi gave a great explanation about how to solve your problem :

If you need more information, please go back to your original question.


Comments

Popular posts from this blog

c# - sqlDecimal to decimal clr stored procedure Unable to cast object of type 'System.Data.SqlTypes.SqlDecimal' to type 'System.IConvertible' -

Calling GetGUIThreadInfo from Outlook VBA -

Obfuscating Python code? -