narmi2
asked on
Securing AJAX pages
Hello,
Is it possible to secure my ajax pages? Ajax normally needs 2 pages, the front-end page which displays the results returned, and the backend page which generates the results. How do I stop people from accessing the backend pages?
for example, right now people can do something like
http://mywebsite/backend.aspx?id=something
and it will show them everything based on the querystring.
how can i stop them from doing that?
Is it possible to secure my ajax pages? Ajax normally needs 2 pages, the front-end page which displays the results returned, and the backend page which generates the results. How do I stop people from accessing the backend pages?
for example, right now people can do something like
http://mywebsite/backend.aspx?id=something
and it will show them everything based on the querystring.
how can i stop them from doing that?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Also take a look at SAJA (http://saja.sourceforge.net/), which focuses on Ajax security.