CodeIgniter Forums
passing values in segment - Printable Version

+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Archived Discussions (https://forum.codeigniter.com/forum-20.html)
+--- Forum: Archived General Discussion (https://forum.codeigniter.com/forum-21.html)
+--- Thread: passing values in segment (/thread-45680.html)



passing values in segment - El Forum - 09-30-2011

[eluser]ptvw2011[/eluser]
Hello

I am building an application which incorporates CRUD. So to delete a document I will pass the docID in the URL. so myapp.com/controller/docID.

I realise that this is very insecure, so I test docID against the session userID in the database and return false if its invalid and redirect the user so people cant just adjust the ID and start deleting random documents.

My question is: 'is this ample security for a public accessible system?'

if not, what other methods could I use?

sorry for my poor English I am not a native speaker Smile

Thanks