Reputation: 797
How can I make the JSON data accessible only to my java script?
I am designing a web application that needs to visualize large amount of data as Charts. I found some javascript libraries [dynagraph] that can do this. But the issue is that if I use javascript to access the data [JSON format], anybody can modify the javascript[using tools like 'developer tools' in Google Chrome] and get the data!! So, is there anyway to prevent this?
Thanks
Upvotes: 2
Views: 195
Answers (3)
Reputation: 5115
The answer is No. JavaScript code is being ran on the client side, as you said, and that means any data it might access will be in the hands of the client.
What you can do is pass information to a server side script that will generate your chart, and send you back only the non-private information to be displayed.
Upvotes: 4
Reputation: 4657
Any data you pass to the client can be tampered with on the client, no matter what technology you're using.
If you are accepting unvalidated input from a client, then you are inviting trouble.
You need to validate the data that the client sends back on the server side, to ensure that the values are sane and match up with business rules.
Upvotes: 0
Reputation: 9847
Yes, don't use Javascript but some server-side tools. Whenever you use data client-side, your data can be read.
Upvotes: 2
Related Questions
- How to prevent direct access to my JSON service?
- Creating a "private" JSON object?
- How do I simply make my JSON data accessible by my script?
- How to protect JSON response?
- Secure JSON file to be readed without permision
- JSON security best practices?
- How to protect my Javascript from being accessed by other parties?
- Very Confused (And Worried) about security with JSON and Javascript
- JSON Security
- Sending data with javascript, how do I "protect" or "encrypt" it?