Querystring tampering

  • Thread starter Thread starter Ram
  • Start date Start date
R

Ram

Hi,

I am passing values from one form to another using querystring. It is
easy for anyone to tamper these values. Now i don't want to show any
values in the url .How can be this done?.
I don't want any encryption. Please suggest a solution which can be
incorporated in a single file and use across the application .

Thanks and Regards,
S.Ramalingam.
 
On server side: session variables.

For opening dialog forms from client side: second argument in
showModalDialog call.

Eliyahu
 
Sensitive information should be kept on the server, not passed around via
querystring or form posts.
So you should probably store it in a database or in Session/Application
variables.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

How to encrypt SSN in querystring? 4
Handling hyperlinks in gridview 1
Problem with empty page 3
Setting the outgoing querystring 4
HOWTO: Get Querystring Passed To Referring Page 3
Problem using QueryString, replaces + with space 2
How to unpack an encrypted QueryString? 3
Invalid/Missing QueryString - How to react? 3

Back
Top