Solved

Hidding Query Strings

Posted on 1997-11-16
4
145 Views
Last Modified: 2013-12-25
Is it possible to hide a quey string ie. ?AccountId=12 when passing this to a CGI, so that a user cannot change the AccountId to another value.
0
Comment
Question by:dl090597
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 7

Accepted Solution

by:
faster earned 50 total points
ID: 1831270
Query string can not be hidden, but you can make it more difficult for a user to change it.  One way is to use POST method, another is to set this in a hidden field.  Or you can consider to use cookie.
0
 
LVL 84

Expert Comment

by:ozo
ID: 1831271
Well, there's
<input type=hidden name=AccountId value=12>
but that doesn't really prevent the user from creating another
page with a different value.
0
 
LVL 84

Expert Comment

by:ozo
ID: 1831272
Although it's hard to hide the actual query strings, you may be able to hide its other valid values
If you use a one-way hash on the value, you could make it very hard for a user to guess what values it would make sense to change it to.
0
 
LVL 2

Expert Comment

by:rigansen
ID: 1831273
I came up with the same question, you can see alamo's answer at the "JavaScript Topic Area" titled "Hiding the Location string from the user".

So far now I think the best approach is a combination of faster's answer and ozo's comment... but if you get a better clue, please leave me a comment... ok??

    Rigansen.
0

Featured Post

Linux Academy Android App Now Supports Chromecast

We have some fantastic news for our Android fans. We’re so excited to announce that the Linux Academy Android app is now available with Chromecast support. That’s right – simply download the latest update of the Linux Academy App and start casting your favorite course videos!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This tutorial will discuss fancy secure registration forms, with AJAX technology support. In this article I assume you already know HTML and some JS. I will write the code using WhizBase Server Pages, so you need to know some basics in WBSP (you mig…
A quick Powershell script I wrote to find old program installations and check versions of a specific file across the network.
Learn the basics of strings in Python: declaration, operations, indices, and slicing. Strings are declared with quotations; for example: s = "string": Strings are immutable.: Strings may be concatenated or multiplied using the addition and multiplic…
Learn the basics of modules and packages in Python. Every Python file is a module, ending in the suffix: .py: Modules are a collection of functions and variables.: Packages are a collection of modules.: Module functions and variables are accessed us…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question