Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Anyone validating URLS passed to your app???
Anyone validating URLS passed to your app???
  • El Forum
    Unregistered
  •  
#2
11-05-2008, 06:14 AM

[eluser]Référencement Google[/eluser]
I don't really see the need of doing this.

First of, accessing an edit post url should be only possible in a secured environement, only once the user is already logged in.

Then what I usually do too is unsure the edited post belongs to the concerned user by querying the DB with the logged in user ID before letting him edit. I additionally unsure the ID is numerical and exists in the post table. With all that I am almost sure I won't have problems.


Messages In This Thread
Anyone validating URLS passed to your app??? - by El Forum - 11-05-2008, 04:56 AM
Anyone validating URLS passed to your app??? - by El Forum - 11-05-2008, 06:14 AM
Anyone validating URLS passed to your app??? - by El Forum - 11-05-2008, 06:39 AM
Anyone validating URLS passed to your app??? - by El Forum - 11-05-2008, 07:56 AM



Theme © iAndrew 2016 - Forum software by © MyBB