<div>
Also take a look at SAJA (<a href="http://saja.sourceforge.net/" rel="ugc">http://saja.sourceforge.net/</a>), which focuses on Ajax security.
</div>


Also take a look at SAJA (http://saja.sourceforge.net/ [http://saja.sourceforge.net/]), which focuses on Ajax security.

<div>
<div class="content wysiwyg-content">
Hello,<br />
<br />
Is it possible to secure my ajax pages? &nbsp;Ajax normally needs 2 pages, the front-end page which displays the results returned, and the backend page which generates the results. &nbsp;How do I stop people from accessing the backend pages?<br />
<br />
for example, right now people can do something like<br />
<br />
<a href="http://mywebsite/backend.aspx?id=something" rel="ugc">http://mywebsite/backend.aspx?id=something</a><br />
<br />
and it will show them everything based on the querystring.<br />
<br />
how can i stop them from doing that?
</div>
</div>


Hello,

Is it possible to secure my ajax pages?  Ajax normally needs 2 pages, the front-end page which displays the results returned, and the backend page which generates the results.  How do I stop people from accessing the backend pages?

for example, right now people can do something like

http://mywebsite/backend.aspx?id=something

and it will show them everything based on the querystring.

how can i stop them from doing that?

Securing AJAX pages

PHP is a widely-used server-side scripting language especially suited for web development, powering tens of millions of sites from Facebook to personal WordPress blogs. PHP is often paired with the MySQL relational database, but includes support for most other mainstream databases. By utilizing different Server APIs, PHP can work on many different web servers as a server-side scripting language.

The successor to Active Server Pages, ASP.NET websites utilize the .NET framework to produce dynamic, data and content-driven web applications and services. ASP.NET code can be written using any .NET supported language. As of 2009, ASP.NET can also apply the Model-View-Controller (MVC) pattern to web applications

ASP.NET

JavaScript is a dynamic, object-based language commonly used for client-side scripting in web browsers. Recently, server side JavaScript frameworks have also emerged. JavaScript runs on nearly every operating system and  in almost every mainstream web browser.