Re: Hiding variables passed via URL
- From: The Natural Philosopher <a@xxx>
- Date: Mon, 14 Jul 2008 01:13:59 +0100
sheldonlg wrote:
C. (http://symcbean.blogspot.com/) wrote:On Jul 13, 7:13 am, The Natural Philosopher <a...@xxx> wrote:Michael Fesser wrote:.oO(The Natural Philosopher)Ah, it may be forbidden, but does it work? ;-)Michael Fesser wrote:Sending POST data to another location must be triggered or at leastYou can't redirect a POST request.Are you sure?
confirmed by the user. Automatically redirecting anything other than
GET or HEAD is explicitly forbidden by the HTTP spec ("MUST NOT").
Micha
NO
Besides all that, a "hidden" variable is not really "hidden". A "view source" will expose that variable. Session variables are, indeed, the way to go.
well you can view cookies as well.
Frankly, though, I don't see the big problem. Since the OP is passing in the error message, it is obviously to display it to the user. Otherwise, why do it? If it is also in the URL, so what?.
- Follow-Ups:
- Re: Hiding variables passed via URL
- From: Jerry Stuckle
- Re: Hiding variables passed via URL
- References:
- Hiding variables passed via URL
- From: chochote
- Re: Hiding variables passed via URL
- From: The Natural Philosopher
- Re: Hiding variables passed via URL
- From: Michael Fesser
- Re: Hiding variables passed via URL
- From: The Natural Philosopher
- Re: Hiding variables passed via URL
- From: Michael Fesser
- Re: Hiding variables passed via URL
- From: The Natural Philosopher
- Re: Hiding variables passed via URL
- From: C. (http://symcbean.blogspot.com/)
- Re: Hiding variables passed via URL
- From: sheldonlg
- Hiding variables passed via URL
- Prev by Date: Re: CDATA?
- Next by Date: Re: Hiding variables passed via URL
- Previous by thread: Re: Hiding variables passed via URL
- Next by thread: Re: Hiding variables passed via URL
- Index(es):
Relevant Pages
|
