Re: Hiding variables passed via URL

---

• From: Jerry Stuckle <jstucklex@xxxxxxxxxxxxx>
• Date: Sun, 13 Jul 2008 20:17:12 -0400

---

The Natural Philosopher wrote:

sheldonlg wrote:

C. (http://symcbean.blogspot.com/) wrote:

On Jul 13, 7:13 am, The Natural Philosopher <a...@xxx> wrote:

Michael Fesser wrote:

.oO(The Natural Philosopher)

Michael Fesser wrote:

You can't redirect a POST request.

Are you sure?

Sending POST data to another location must be triggered or at least
confirmed by the user. Automatically redirecting anything other than
GET or HEAD is explicitly forbidden by the HTTP spec ("MUST NOT").

Ah, it may be forbidden, but does it work? ;-)

Micha

NO

Besides all that, a "hidden" variable is not really "hidden". A "view source" will expose that variable. Session variables are, indeed, the way to go.

well you can view cookies as well.

Frankly, though, I don't see the big problem. Since the OP is passing in the error message, it is obviously to display it to the user. Otherwise, why do it? If it is also in the URL, so what?

What does that have to do with this conversation? No one has mentioned cookies until you did.

Why do you keep bringing up unrelated topics?

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@xxxxxxxxxxxxx
==================

.

---

• Follow-Ups:
  • Re: Hiding variables passed via URL
    • From: The Natural Philosopher
  • Re: Hiding variables passed via URL
    • From: Satya

• References:
  • Hiding variables passed via URL
    • From: chochote
  • Re: Hiding variables passed via URL
    • From: The Natural Philosopher
  • Re: Hiding variables passed via URL
    • From: Michael Fesser
  • Re: Hiding variables passed via URL
    • From: The Natural Philosopher
  • Re: Hiding variables passed via URL
    • From: Michael Fesser
  • Re: Hiding variables passed via URL
    • From: The Natural Philosopher
  • Re: Hiding variables passed via URL
    • From: C. (http://symcbean.blogspot.com/)
  • Re: Hiding variables passed via URL
    • From: sheldonlg
  • Re: Hiding variables passed via URL
    • From: The Natural Philosopher

• Prev by Date: Re: Hiding variables passed via URL
• Next by Date: Re: GD or ImageMagick
• Previous by thread: Re: Hiding variables passed via URL
• Next by thread: Re: Hiding variables passed via URL
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Hiding variables passed via URL ... Sending POST data to another location must be triggered or at least ... Automatically redirecting anything other than ... A "view source" will expose that variable. ... Session variables are, indeed, the way to go. ... (comp.lang.php) Re: Hiding variables passed via URL ... sheldonlg wrote: ... Sending POST data to another location must be triggered or at least ... Automatically redirecting anything other than ... Session variables are, indeed, the way to go. ... (comp.lang.php) Re: Hiding variables passed via URL ... Sending POST data to another location must be triggered or at least ... Automatically redirecting anything other than ... How do you do that in PHP? ... In perl, ... (comp.lang.php) Re: Hiding variables passed via URL ... Jeff wrote: ... Sending POST data to another location must be triggered or at least ... Automatically redirecting anything other than ... In perl, ... (comp.lang.php) Re: Hiding variables passed via URL ... ..oO(The Natural Philosopher) ... You can't redirect a POST request. ... Sending POST data to another location must be triggered or at least ... (comp.lang.php)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

coding.derkeiler.com  > Archive  > PHP  > comp.lang.php  > 2008-07