php - Securing and/or encrypting (hiding) POST variables in a jQuery ajax request -

php - Securing and/or encrypting (hiding) POST variables in a jQuery ajax request -

I have an invitation form on a web application, which I am working on. In this invitation form, the user has to select an email account and then enter the username and password. These details are sent as a post variable via AJAX request using jQuery. The problem is that I can see the passwords entered in plain text (as well as other post variables) using the Mozilla plugin firebug.

I believe that the password in plain text (in firebug) is not able to see the ideal. Anyway, can I stop it? I tried to serve AJAX calls from HTTPS to a page and also requested on HTTPS, but I can still see all POST variables in plain text in firebug.

Is there any way, I can encrypt them, decrypt them on client-side variables and then on server-side? Or is there some other solution?

If you are using HTTPS, there is no need to worry (as when Till HTTPS is setup properly, but it is not relevant to this question).

You can see values in firebugs because firebug can see the header sent by your browser, but none except the browser read these statistics.

Actually, you can not hide the value from firebug, because the browser should know what to send and firebug can access everything to your browser .

03:22

Comments

Post a Comment

Popular Posts

google chrome extension - Reason for Uncaught Error: Attempting to use a disconnected port object -

While retrieving the request from the content script, I get this error in the background page. Does anyone know that this error What can be the reason? Full stack trace: Unwanted error: Attempt to use Chrome / Renderer Extension Binding Disconnected Port Objects: 147 Chrome.port Post Message Chrome / Renderer Extension Binings: 147 ChromeHird.port DicePatchOnConnect.Connect Event Chrome / Renderer Extension Binings: 89IExtension.fu SendResponse.state background.js: 1573db.readTransaction.tx.executeSql.paramStr background.js: 1038 This only happens when Reloading extension is not being helpful for a few hours - it is not that after restarting the Chrome browser it will be a solution that becomes normal for a few hours, content script may continue to send requests for background No response can be sent from the background. Is there any way that I can catch this unwanted error and reset the listener? I am using chrome.extension.onRequest.addListener for my communication. Bef...

visual studio 2010 - How to reinstall MVC 2 tools for VS2010? -

I uninstalled ASP.Net MVC 2 device for Visual Studio 2010. How can I restore it? MVC2 downloads seem to include only the VS2008 device. Whatever I said, says that MVC 2 has been included in VS2010, but the installation of an improvement did not fix it, and MVC 2 is not listed. Add VS2010 / Select a component in the Remove screen. You will get your VS2010ToolsMVC2.msi VS2010 DVD under WCU \ ASPNETMVC - hopefully it will do!

Git Bash script to check whether repo has any commits? -

I have a script on which I need to work differently if there is one, which is one or more , Commits. What is the best way to do this? Something like this will appear in the proxy code. #! / Bin / bash if [[`git log_count`] ==" 0 "]]; Then there is no commodity for this repo. # What goods ... and echo are "one or more committed!" # What are the other things? Any ideas? you can git rev-parse -verify HEAD (after :) This is a pipeline command, and its behavior vs. " git diff " There is very little possibility to change I find it more pronounced rev-parse -verify means "is this a valid object name?" This is your show-ref . You ask "Is there anything in this safe / head in the safe?" I ask, "what current head exists?" In practice, both of these are fair tests, because once you have a branch, so to achieve the HEAD , some mock values will indicate manually lack of editing It is very diffic...

Powered by Blogger