Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Hidding Query Strings

Posted on 1997-11-16
4
Medium Priority
?
155 Views
Last Modified: 2013-12-25
Is it possible to hide a quey string ie. ?AccountId=12 when passing this to a CGI, so that a user cannot change the AccountId to another value.
0
Comment
Question by:dl090597
  • 2
4 Comments
 
LVL 7

Accepted Solution

by:
faster earned 100 total points
ID: 1831270
Query string can not be hidden, but you can make it more difficult for a user to change it.  One way is to use POST method, another is to set this in a hidden field.  Or you can consider to use cookie.
0
 
LVL 85

Expert Comment

by:ozo
ID: 1831271
Well, there's
<input type=hidden name=AccountId value=12>
but that doesn't really prevent the user from creating another
page with a different value.
0
 
LVL 85

Expert Comment

by:ozo
ID: 1831272
Although it's hard to hide the actual query strings, you may be able to hide its other valid values
If you use a one-way hash on the value, you could make it very hard for a user to guess what values it would make sense to change it to.
0
 
LVL 2

Expert Comment

by:rigansen
ID: 1831273
I came up with the same question, you can see alamo's answer at the "JavaScript Topic Area" titled "Hiding the Location string from the user".

So far now I think the best approach is a combination of faster's answer and ozo's comment... but if you get a better clue, please leave me a comment... ok??

    Rigansen.
0

Featured Post

Ask an Anonymous Question!

Don't feel intimidated by what you don't know. Ask your question anonymously. It's easy! Learn more and upgrade.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Batch, VBS, and scripts in general are incredibly useful for repetitive tasks.  Some tasks can take a while to complete and it can be annoying to check back only to discover that your script finished 5 minutes ago.  Some scripts may complete nearly …
Active Directory replication delay is the cause to many problems.  Here is a super easy script to force Active Directory replication to all sites with by using an elevated PowerShell command prompt, and a tool to verify your changes.
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.
The viewer will learn the basics of jQuery, including how to invoke it on a web page. Reference your jQuery libraries: (CODE) Include your new external js/jQuery file: (CODE) Write your first lines of code to setup your site for jQuery.: (CODE)
Suggested Courses

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question