Register
Help
Remember Me?

Results 1 to 10 of 15

Thread: Prevent access via entering url in address bar of browser

Thread Tools
- Show Printable Version
- Subscribe to this Thread…
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Nov 11th, 2005, 12:08 PM #11
rwtaylor

View Profile

View Forum Posts

Private Message

Member
Join Date

Sep 2005

Posts

34
Originally Posted by yatesco

To make it a *little* bit more difficult, make all your controllers only accept posts instead of gets. Anything entered into the URL in a browser is sent as a post....

To be honest, I think it would be better for you to deal with the security issue instead of ignoring it This all seems very fragile and a bit nasty

Thanks. But this solution is not acceptible in my circumstance.
It could also be spoofed. For example, Canoo WebTests can send a POST request to any url once authenticated.

Reply With Quote

Quick Navigation Web Top

Site Areas
Settings
Private Messages
Subscriptions
Who's Online
Search Forums
Forums Home
Forums
Spring Projects
1. Announcements
2. Container
3. AOP
4. Data
  1. Hadoop
  2. NoSQL
  3. GemFire
  4. LDAP
5. Security
  1. OAuth
  2. SAML
6. Web
  1. Web Flow
  2. Flex
  3. Social
  4. Mobile
  5. Greenhouse
7. Web Services
8. Integration
9. Batch
10. Management
  1. Spring Insight Bounty Program
  2. Insight
11. SpringSource Tool Suite
12. Roo
13. Android
14. Scala
15. XD
Other Spring Related
1. Shell
2. Remoting
3. EJB
4. Swing
5. Architecture
6. Grails
7. Meta
8. Champions
  1. Grails
  2. Groovy
  3. Spring
9. User Groups
SpringSource tc Server
1. tc Server Announcements
2. tc Server General
SpringSource Cloud Foundry
1. Cloud Foundry Announcements
2. Cloud Foundry General
Spring Extensions
OSGi Related
Attic

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT -5. The time now is 06:20 AM.

Powered by vBulletin® Version 4.2.1
Copyright © 2013 vBulletin Solutions, Inc. All rights reserved.