php - How to authenticate AJAX call?

Question

I have designed a website which uses AJAX. I have a PHP page named store.php which accepts data sent by POST method and stores in the database.

How do I implement authentication into store.php? I only want a user logged into my site to use store.php.

Currently I am using htaccess to redirect the requests for store.php but I don't think that is a good solution.

Answer 1

Any AJAX Call to a Server Script will still include the session id in the request. If you are implementing sessions in your site, then start the session and you will be able to see session variables for the currently logged in user.