Bookmark Topic Watch Topic
  • New Topic

Encyrpting/Encoding the parameter passed along with the URL  RSS feed

 
alpesh helwatkar
Ranch Hand
Posts: 30
Eclipse IDE Tomcat Server
  • Mark post as helpful
  • send pies
  • Report post to moderator
hi,

I have a web application based on J2EE architecture.

We have links on all the pages.

at one link i'm appending an additional parameter along with the regular URL in the JSP

is there any way that i can hide/encrypt/encode the parameter or maybe the whole URL??

the code that shows the url is :

<td width="85%" height="20" class="line27 borbot1"><a href="<%=request.getContextPath()%>/AcctSumary.do?id=<%=usrid%>" target="mainFrame" class="link" title="click here for linked accounts" >linked accounts</a></td>


where i have passed <%=usrid%> as the additional parameter to be encoded.

it is all numbers!!

i have declared the variable in the scriptlet in the same jsp as

<% String usrid = (String)session.getContextpath("CUSTOMERID");%>

the URL looks like this :

http://<machine_name>/<path>/Acctsummary.do?id=184041 on the status bar

I have used all javascript workaround to hide the status bar but the need is to get it encyrpted...

Please help
 
Ulf Dittmer
Rancher
Posts: 42972
73
  • Mark post as helpful
  • send pies
  • Report post to moderator
Why is there a need to hide the userID from the user? If it's his own ID, then there's no need to put it in the URL - it can be taken from the server session (assuming there is one). If the user is allowed to access data from other people's accounts, then you need to verify on the server that the user making the request is allowed to see the data he's requesting anyway (in which case hiding the ID doesn't accomplish much).
 
alpesh helwatkar
Ranch Hand
Posts: 30
Eclipse IDE Tomcat Server
  • Mark post as helpful
  • send pies
  • Report post to moderator
very true pal,
even i raised the same question,but it is client requirement.
cannot help.There is a specific need to put the userid in the URL for some reasons as well.
But,they are sceptical about displaying the userid in the status bar.
They just want it encyrpted.
 
Ulf Dittmer
Rancher
Posts: 42972
73
 
    Bookmark Topic Watch Topic
  • New Topic
Boost this thread!