Solved

Passing querystrings securely or with hidden values

Posted on 2008-10-29
2
480 Views
Last Modified: 2012-05-05
Hi There

I have two web sites a ASP.NET  and an old legacy ASP system.
I want to have a site link that passes parameters in a querystring to the asp website.

My problem is that I will be passing user information from in a querystring I would like to hide those values or make sure that the asp website only exepts calls from the asp.net page.

HERE is the url i am using

<a href="http://legacysite/login.asp?UserID=<%=Session["Docter_Username"]%>&Password=<%=Session["Docter_Password"]%>"  target="_blank">

If there are any other suggestions on how to do this please let me know.

Both systems will be running on SSL
0
Comment
Question by:Stanton_Roux
2 Comments
 
LVL 49

Expert Comment

by:Ryan Chong
Comment Utility
try "POST" to your old asp portal, instead of pass those parameters via QueryString ?
0
 
LVL 10

Accepted Solution

by:
jinn_hnnl earned 500 total points
Comment Utility
The best way you can do is encrypt your querystring, this method we normally use when we have to transfer pages across multiple framework.

You can take a look here
http://sqlserverjunkies.com/HowTo/99201486-ACFD-4607-A0CC-99E75836DC72.dcik
http://www.simple-talk.com/dotnet/asp.net/a-complete-url-rewriting-solution-for-asp.net-2.0/
or
http://www.devcity.net/Articles/47/1/encrypt_querystring.aspx

JINN


0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Introduction Hi all and welcome to my first article on Experts Exchange. A while ago, someone asked me if i could do some tutorials on object oriented programming. I decided to do them on C#. Now you may ask me, why's that? Well, one of the re…
Entity Framework is a powerful tool to help you interact with the DataBase but still doesn't help much when we have a Stored Procedure that returns more than one resultset. The solution takes some of out-of-the-box thinking; read on!
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now