42
Originally posted by Bear Bibeault:
Call me paranoid, but I validate everything coming into the controller, and then I validate again at the business layer (since the business layer is UI-agnostic and can't count on validation being handled by the controller).
Client-side validation, as previously pointed out, is a "user experience" enhancement, not true validation.
42
do you have a full mechanism for return ing the user to a filled out form
Originally posted by Jeroen Wenting:
If you don't return an error message it's kinda pointless to do validation is it?
42
I could see a case for using only assertions ...
Originally posted by Jeroen Wenting:
ah. The way I use clientside validation is making illegal input impossible.
Usually that boils down to things like disabling input fields that aren't allowed to be changed and filtering keyboard input.
In such a scenario the server is the only one to return errors to the client.