Search Results

Search found 18876 results on 756 pages for 'request validation'.

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Page 436/756 | < Previous Page | 432 433 434 435 436 437 438 439 440 441 442 443  | Next Page >

  • Jquery $.post and PHP - Prevent the ability to use script outside of main website.

    - by Tim
    I have a PHP script setup using Jquery $.post which would return a response or do an action within the targeted .php file within $.post. Eg. My page has a form where you type in your Name. Once you hit the submit form button, $.post is called and sends the entered Name field value into "mywebsite.xyz/folder/ajaxscript.php" If a user was to visit "mywebsite.xyz/folder/ajaxscript.php" directly and somehow POST the data to the script, the script would return a response / do an action, based on the submitted POST data. The problem is, I don't want others to be able to periodically "call" an action or request a response from my website without using the website directly. Theoretically, right now you could determine what Name values my website allows without even visiting it, or you could call an action without going through the website, by simply visiting "mywebsite.xyz/folder/ajaxscript.php" So, what measures can I take to prevent this from happening? So far my idea is to ensure that it is a $_POST and not a $_GET - so they cannot manually enter it into the browser, but they could still post data to the script... Another measure is to apply a session key that expires, and is only valid for X amount of visits until they revisit the website. ~ Or, just have a daily "code" that changes and they'd need to grab this code from the website each day to keep their direct access to the script working (eg. I pass the daily "code" into each post request. I then check that code matches in the ajax php script.) However, even with these meaures, they will STILL have access to the scripts so long as they know how to POST the data, and also get the new code each day. Also, having a daily code requirement will cause issues when visiting the site at midnight (12:00am) as the code will change and the script will break for someone who is on the website trying to call the script, with the invalid code being passed still. I have attempted using .htaccess however using: order allow,deny deny from all Prevents legitimate access, and I'd have to add an exception so the website's IP is allowed to access it.. which is a hassle to update I think. Although, if it's the only legitimate solution I guess I'll have to. If I need to be more clear please let me know.

    Read the article

  • Best Method for "Back Button"

    - by CitadelCSCadet
    I'm working on a web application using JSP/Servlets, etc. And I have a lot of form progression. I am aware of some ways to use the "Back" functionality, but I am not sure if its efficient enough. What are the best ways to implement this? Does it Involve using the session object? or just the request? or neither?

    Read the article

  • facebook - Is it possible to prompt user for a require permission dialog using javascript

    - by user126015
    Hi all, I am developing a small facebook application. In my application I need offline_access and email permission. I've been succesfully prompting the user for permission using FB.Connect.showPermissionDialog("email,offline_access"); But what I really want to do is prompt the user with a require permission dialog, not request. Does anyone know how to do that in javascript? Thank you very much!

    Read the article

  • Scroll to bottom of div?

    - by dMix
    I am creating an ajax chat in rails and I am trying to get a div to scroll to the bottom without much luck. I am wrapping everything in this div: #scroll { height:400px; overflow:scroll; } Is there a way to keep it scrolled to the bottom by default using JS? is there a way to keep it scrolled to the bottom after an ajax request?

    Read the article

  • How do I use rest-client for ruby to post an image?

    - by Angela
    I am trying to find a way to use the Postful API and I need to post an image in the body of the request. I am trying to use rest-client (but am open to other ways): This is how I am trying to use it after looking at the restclient.rb file but I'm still not clear: class ContactPostfulsController < ApplicationController require 'rest_client' RestClient.post 'http://www.postful.com/service/upload', 'the actual image...?', :content_type => 'application/octet-stream' end

    Read the article

  • How to List Some Table Records in Windows Application? - C#.NET

    - by user327387
    Which control should i use? I don't want the records to be displayed on the Windows Application list in the same way records displayed in database as this: I want the records to be displayed statically and a user when right click a record, he/she gets Edit and Remove choices. Of course there has to be static headers at the top. I hope my request is clear. I'm using C#.NET - VS 2008

    Read the article

  • Chrome extension - Localstorage not working

    - by Bjarki Jonasson
    I'm writing a Chrome extension that uses a content script to modify certain parts of a website. The content script worked fine until I tried to add an options page to my extension. Right now I'm using an options.html file to save user preferences to localstorage, as you can see here: <html> <head><title>Options</title></head> <script type="text/javascript"> function save_options() { var select = document.getElementById("width"); var width = select.children[select.selectedIndex].value; localStorage["site_width"] = width; } function restore_options() { var fwidth = localStorage["site_width"]; if (!fwidth) { return; } var select = document.getElementById("width"); for (var i = 0; i < select.children.length; i++) { var child = select.children[i]; if (child.value == fwidth) { child.selected = "true"; break; } } } </script> <body onload="restore_options()"> Width: <select id="width"> <option value="100%">100%</option> <option value="90%">90%</option> <option value="80%">80%</option> <option value="70%">70%</option> </select> <br> <button onclick="save_options()">Save</button> </body> </html> I also have a background.html file to handle the communication between the content script and the localstorage: <html> <script type="text/javascript"> chrome.extension.onRequest.addListener(function(request, sender, sendResponse) { if (request.method == "siteWidth") sendResponse({status: localStorage["site_width"]}); else sendResponse({}); }); </script> </html> Then there's the actual content script that looks like this: var Width; chrome.extension.sendRequest({method: "siteWidth"}, function(response) { width = response.status; }); None of that code actually works. It looks solid enough to me but I'm not a very experienced programmer so I might be wrong. Could someone explain localstorage to me in layman's terms?

    Read the article

  • iOS: RestKit loadObject & send params

    - by Alon Amir
    using loadObjectAtResourcePath, on GET method, doesn't include my parameters on the requests. for example, i send: [RKObjectManager objectManagerWithBaseURL:@"http://something/ws"]; [[RKObjectManager sharedManager] loadObjectsAtResourcePath:@"/res" delegate:self block:^(RKObjectLoader *loader) { NSDictionary *dict = [NSDictionary dictionaryWithObjectsAndKeys: @"val", @"param1", nil]; loader.params = [RKParams paramsWithDictionary:dict]; }]; the final url request doesn't include the "?param1=val" part - why is that?

    Read the article

  • Deploy .net MVC 2 appication on IIS6

    - by munish
    I want to deploy my .net MVC 2 appication on IIS6.0. Will it require to change route path in global.asax file. In my application i have used html link, ajax request and Html.ActionLink. The code lines in the Global.asax file are: routes.MapRoute( "LogOn", "{controller}/{action}/{id}", new { controller = "Account", action = "Index", id = UrlParameter.Optional } ); Please suggest me. Thanks and Regards Munish

    Read the article

  • POST with curl without sending data

    - by Marcus
    Is there a way to use curl to send a POST request without sending any data? We usually post like: curl --data @C:\mydata.txt http://1.2.3.4/myapi If you omit the --data you are doing a GET. How can you omit it and still do a POST?

    Read the article

  • How can I create and use a web service in public but still restrict its use to only my app?

    - by Glenn
    I'm creating a web service with create/update/delete calls. But for now I'd like to restrict use of it on my own web app and no other clients. How can I have clear text javascript code that makes these calls but still be confident the credentials won't be used elsewhere? My idea is to use server side generated nonces for each request. But I am open to different ideas you guys may have. Thanks.

    Read the article

  • Passing values from UIButton to an UIActionSheet

    - by Michael
    I'm trying to send an ActionSheet a variable from a button. I can't use the tag property because its being used for something else. I've declared myIndexRow as an instance variable and have: NSInteger myIndexRow = indexPath.row; [deleteButton addTarget:self action:@selector(showDeleteSheet:) forControlEvents:UIControlEventTouchUpInside]; deleteButton.myIndexRow = myIndexRow; but I'm getting the 'Request for member 'myRow' is something not a structure or union' There is something obvious I am missing here.

    Read the article

  • Auto generation of Web Service sample, help and documentation

    - by orjan
    We're using javax.jws.WebServices deployed in a Glassfish server, is there a way to auto generate documentation like the one ASMX services generates? ASMX services display methods in service ASMX services when running locally could be easily tested with a prebuilt form ASMX services provided a sample request and response XML message http://keithelder.net/blog/archive/2008/01/15/How-to-Get-Around-WCFs-Lack-of-a-Preview-Web.aspx In Glasshfish together with /test/TestApi?wsdl there's /test/TestApi?Tester but it doesn't work, I don't know if it can be used to provide similar features as above?

    Read the article

  • tapestry5 page to render plain text

    - by pstanton
    Hi All, I've been looking but can't find the the documentation: Is there a way to have a page render a response without the wrapping HTML elements and just print whatever is provided in the body of the tml or alternatively whatever is set in MarkupWriter.write during @BeginRender? I need a page that does some server side processing and returns pure javascript for an external application to request. If that is impossible, is it possible to expose the tapestry Ioc to a servlet in the same app? Thanks, p.

    Read the article

  • Setting jvmargs in log4j.properties file

    - by Thomas
    Hey This is a bit of a weird request but I am trying to set some jvmargs in the log4j.properties file. At present I use ant to for example set some args.... jvmarg value="-Dmail.smtp.socketFactory.port=465" ... but it would be great to group a few of these logging relevant arguments into the .properties file. Does anyone know how to do this? Thanks in advance!

    Read the article

  • Symfony and uploadify

    - by Thomas
    Hi! I want to use uploadify with Symfony 1.4, but so far I couldn't. Uploadify loads correctly, I choose my files, it says that the files were successfully uploaded, but the are nowhere. (I'm doing this on localhost) Is there anybody who met this problem before? Thanks, Tom $file = $request->getParameter('file'); $filename = sha1($file->getOriginalName()).$file->getExtension($file->getOriginalExtension()); $file->save(sfConfig::get('sf_upload_dir').'/'.$filename);

    Read the article

  • Facebook requests 3 post_authorize/post_remove. How can I stop it?

    - by Ray Yun
    When user authorize or remove application, Facebook always request post_authorize or post_remove callback 3 times. Only I throws HTTP 500 error, it stop calling them. Yeah, it would be easy to ignore subsequent requests when I successfully handled that. So this maybe academic question. Is there any method to stop facebook requests with http status code??? :)

    Read the article

  • C# Visual Studio Unit Test, Mocking up a client IP address

    - by Jimmy
    Hey guys, I am writing some unit tests and I'm getting an exception thrown from my real code when trying to do the following: string IPaddress = HttpContext.Current.Request.UserHostName.ToString(); Is there a way to mock up an IP address without rewriting my code to accept IP address as a parameter? Thanks!

    Read the article

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

< Previous Page | 432 433 434 435 436 437 438 439 440 441 442 443  | Next Page >