Quote
$_SESSION['_access_is_correct']
You should really replace that
with :
Code:
$user_info['user_level'] != GUEST
instead.
I've done a general overview of the last 20 posts in this topic, and I've come to the conclussion that there's a misunderstanding with the direct-access-prevent stuff... when we say we want to prevent the direct access to the watermark php-file we are not talking about the user level... i mean guests, registered users or admins... I think you TheOracle understood all this like that.
When saying direct-access we are talking about accessing the WMark file by writting the url in the browser...
no restrictions has been set-up in order to block anonymous visits on that MOD.
I guess you mean unregistered users when you say {anonymous visits}... In fact, we dont care if the user is registered or not, logged in or not... I think that can be well configured from the 4images control panel... As i said, all we want to do is avoid direct accessing by typing the watermark.php URL in the browser...
That's why i check a session var instead of checking the user level...
$user_info['user_level'] != GUEST
The reason to prevent this direct access is just to avoid massive downloads of pics out of the details.php page, which is bound to show the images...
P.D. Sorry 4 my bad english
... in fact i'm a spanish speaker