Reputation: 35
RedirectRequestTarget with hidden parameters possible?
I`m redirecting to an external URL in my wicket-application, example:
String returnUrl = "http://www.foo.no/bar/article262559.ece?rc=value";
getRequestCycle().setRequestTarget(new RedirectRequestTarget(returnUrl));
Now, the customer wants the parameter to be hidden from the users (as it is part of some paywall functionality). I know that you can`t use a normal redirect to accomplish this, but is there some other way to do it?
Cheers
Terje
Trondheim, Norway
Upvotes: 2
Views: 321
Answers (1)
Reputation: 4517
Is the customer happy for the system to be hacked? Because this looks entirely hackable.
You could however do this more securely by posting from the server to a web service on the remote server first, retrieving a reference from there to identify the post you just made, and passing this with the user's redirect instead.
That way the details are completely hidden from the client and much more secure.
Upvotes: 2
Related Questions
- Pass Hidden parameters using response.sendRedirect()
- It's possible to send hidden parameters in HttpServletResponse.sendRedirect()?
- Spring 3.0 MVC :Redirect without parameters being added to my url
- How to redirect to third party url from Servlet with some hidden parameters
- Wicket redirect: how to pass on parameters and keeps URLs "pretty"?
- Redirect to hidden url in Java
- Picking up redirect parameters
- How to Wicket Redirect with large parameters?
- Spring MVC 2.5 - How to add parameters to a redirect that don't show in the url?
- How can I create a Wicket URL that hides its parameters?