How can I encrypt and decrypt urls security reasons for the whole server? So
https://darkhelmet/pages/mainframe.php?eduId=28107&displayID=&theme=theme1&version=4.0.3&demo=
would be sent as
https://darkhelmet/pages/mainframe.php?eduId=Exy623&displayID=&theme=thdk8t&version=7hd44&demo=
So the real id that is 28107 will be encrypted to something like Exy623, something not meaningful to the user of the application. In case they change the id to let's say 28108 they will get data of some other user loaded on the page.
Could it be done so the solution is applied the the current application as a new layer on top of the application so there is no need to change php files?
using
If you don't want to modify PHP file, you will need to intercept each HTTP request+response which can be done using reverse web proxy (you can also terminate your SSL here) which will relay HTTP request/resposne to your encryption+decryption code. This code can be totally independent of your app.