How to block non-browser clients from submitting a request?

Posted by Thomas Kohl on Stack Overflow See other posts from Stack Overflow or by Thomas Kohl
Published on 2010-03-19T10:23:13Z Indexed on 2010/03/19 14:51 UTC
Read the original article Hit count: 277

Filed under:
|
|

I want to block non-browser clients from accessing certain pages / successfully making a request.

The website content is served to authenticated users. What happens is that our user gives his credentials to our website to 3rd party - it can be another website or a mobile application - that performs requests on his behalf.

Say there is a form that the user fills out and sends a message. Can I protect this form so that the server processing the submission can tell whether the user has submitted it directly from the browser or not?

I don't want to use CAPTCHA for usability reasons. Can I do it with some javascript?

© Stack Overflow or respective owner

Related posts about JavaScript

Related posts about forms