Topic awaiting preservation: encrypt the vars behind the url in addressbar (Page 1 of 1) |
|
---|---|
Bipolar (III) Inmate From: San Jose, CA |
posted 01-24-2002 18:36
hi there, |
Maniac (V) Mad Scientist with Finglongers From: Cell 53, East Wing |
posted 01-24-2002 19:10
Bueromuenchen: Do you really want to do that? I know as a user I much prefer seeing the URL and being able to edit it if I require. From your end you might want to do a few checks on ids being passed like !empty (to make sure it doesn't say some_id=) and is_numeric (to make sure it says some_id=3 not some_id=DELETE * ...) and the redirect people to an appropriate page so they aren't left staring at the page not found screen. Also create some custom error pages to pick up things that you've not allowed for in those tests. |
Maniac (V) Mad Scientist From: 100101010011 <-- right about here |
posted 01-24-2002 19:15
You can use the md5 function to achieve this. Use it with some sort of string value though or it's easily decrypted. |
Paranoid (IV) Inmate From: Minneapolis, MN, USA |
posted 01-24-2002 21:30
If users are changing variables in the URL, they are not going to be put off by an error message. People can type in any URL they want, and if it doesn't make sense then they expect to get an error message. If you really want to say something meaningful, check the values in the beginning of the script and if they don't match your criteria print a meaningful message to the browser such as "You dirty rascal, you know you aren't supposed to mess with the URL, but you did anyway, so now you're screwed" or perhaps something less antagonistic in case it's caused by an error in your script |
Paranoid (IV) Inmate From: New Jersey, USA |
posted 01-25-2002 00:19
Sorry for the empty post. |
Bipolar (III) Inmate From: San Jose, CA |
posted 01-26-2002 21:58
thanks for the input! |
Bipolar (III) Inmate From: San Jose, CA |
posted 01-29-2002 11:58
to slove my problem with the vars: |
Obsessive-Compulsive (I) Inmate From: ..san diego..ca..usa.. |
posted 02-03-2002 20:44
how would the link run off the form? |