ajax security ?
Posted
by Tony
on Stack Overflow
See other posts from Stack Overflow
or by Tony
Published on 2010-05-06T12:22:39Z
Indexed on
2010/05/06
12:28 UTC
Read the original article
Hit count: 181
When I look back my codes that written earlier time, I found something terribly bad. Whenever I want to delete a record in the database, I did like this :
$.post("deleteAction.do",{recordId:10});
I cannot prevent a malicious user visit my database operation url directly :
deleteAction.do?recordId=10
What's the solution for this kind of problem ?
© Stack Overflow or respective owner