When a user hits a restricted page, I store a session_var holding the desired url, then I direct them over to the login page. If the login is successful I send them back to where they came from. The problem is that with mod_rewrites in place, $_SERVER['php self'] and referer, and URI all pull up the ACTUAL url (so in my case it pulls up the .PHP files instead of my re-written .HTML files). So the redirect will be incorrect. So how does one solve this problem with the least amount of work?