Re: Preventing a url from being recorded in browser history
Re: Preventing a url from being recorded in browser history
- Subject: Re: Preventing a url from being recorded in browser history
- From: Arturo PĂ©rez <email@hidden>
- Date: Fri, 9 Apr 2004 22:03:31 -0400
On Apr 9, 2004, at 9:52 PM, Bill Reynolds wrote:
Can you prevent a url from going to the browsers history? In my case
I use
a directAction and some values in the url to login easily to an admin
backend. I'd like to keep the url from being written to the browsers
history.
TIA
-Bill
No real way to do that. This is one of the reasons that POST is
recommended for this type of thing. You may want to check out the
recommendations of the OWASP.org site.
Your only real alternative, if you insist on a GET, is to
encode/encrypt the URL parameters with what is known as a nonce.
----
WO in philadelphia - wanna cheesesteak with that?
Please visit webobjects.meetup.com.
_______________________________________________
webobjects-dev mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/webobjects-dev
Do not post admin requests to the list. They will be ignored.