How to block non-browser clients from submitting a request?
Posted
by Thomas Kohl
on Stack Overflow
See other posts from Stack Overflow
or by Thomas Kohl
Published on 2010-03-19T10:23:13Z
Indexed on
2010/03/19
14:51 UTC
Read the original article
Hit count: 277
I want to block non-browser clients from accessing certain pages / successfully making a request.
The website content is served to authenticated users. What happens is that our user gives his credentials to our website to 3rd party - it can be another website or a mobile application - that performs requests on his behalf.
Say there is a form that the user fills out and sends a message. Can I protect this form so that the server processing the submission can tell whether the user has submitted it directly from the browser or not?
I don't want to use CAPTCHA for usability reasons. Can I do it with some javascript?
© Stack Overflow or respective owner