Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 2 of 2
  1. #1
    Regular Coder
    Join Date
    Jul 2006
    Posts
    171
    Thanks
    13
    Thanked 1 Time in 1 Post

    Input filtering with Ajax

    Hi,

    Input filtering using javascript can be avoided by simply turning off javascript.

    Since ajax doesn't work with javascript turned off, is the practice of input filtering with javascript secure in an ajax application?

    Andy

  • #2
    Regular Coder
    Join Date
    Jul 2007
    Location
    UK
    Posts
    223
    Thanks
    0
    Thanked 14 Times in 14 Posts
    No, someone could still create a normal html form that referenced your form handling script, therefore bypassing your pages completely.

    Always do input validation server side, validation on the client should always be considered as a user aid not a security measure.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •