Published on 2006-02-07 19:54:00

Eric also gives some rules for Ajax Security:

1. If you use user authentication, make sure you check for it on the request page!
2. Check for SQL injections.
3. Check for JavaScript injections.
4. Keep the business logic on the server!
5. Don't assume every request is real!
6. Check the data with validation!
7. Look at the request's header information and make sure it is correct.

Read the Eric Pascarello's interview

Previous Page

• Vox Imperium, Civilization AJAX Game
• AJAX Page Links Checker
• Version 1.6 of DHTMLX Ajax Components Suite Released, Now with Calendar Control
• PHP and AJAX - Punish your clients less

• Make Your Phone Funnier
• [Contact us]

Member of the PHP Magazine Network, Copyright (C) 2005-2008 phpmagazine.net All Rights Reserved