struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Anton Pussep <an...@pussep.de>
Subject Re: How to avoid users changing values of hidden fields using the URL?
Date Fri, 29 Jun 2007 08:23:56 GMT
Thanks Jeff and Gorka for the competent (and fast) replies!

> if you are using Struts there is a transparent solution
> for that: HDIV

It sound very interesting. I will sure have a closer look at it. Thanks
for the great reference!

> The rule of web applications (heck...all multi-tiered apps) is to
> NEVER EVER trust information sent by the client.

Yes, I think it is very true and this will be my policy in future.

Many thanks,
Anton


Mime
View raw message