Reputation: 39
Restrict changing parameters in address bar
The jsp page is being accessed from an external app with the parameter that is being sent to the page from the address bar is emailaddress. Once the external app references this jsp page, there is a non-editable text field which gets populated with the value of this parameter.
My question is that is there anyway I can make the parameter in address bar in-editable or just not visible to anyone so that nobody can change it.
Upvotes: 1
Views: 154
Answers (1)
Reputation: 340933
The answer is: don't. Do your sanity and security checks on the server side, where no-one can tamper the data. The client has to be authenticated and authorized to send given parameters. You cannot simply rely on the fact that browser or some clever JavaScript will protect you.
You can use POST instead of GET parameters, but this only hides, not protects the data.
Upvotes: 2
Related Questions
- how to hide the parameter value in href in jsp?
- how to get URL from address bar in JSP
- How to restrict the URL modification visibilty in address bar?
- How to hide / modify URL in JSP?
- How to hide passed request parameters from the user?
- JBoss - redirecting url without changing address bar URL in browser
- restrict url access in JSP
- How to Pass Variable and not values in URL in jsp page
- How to restrict clients from accessing a webpage that contains parameters in the URL
- If user try to change parameter through url