Able/Disable hyperlinks based on Login(User Credentials)

Greenhorn

Posts: 6

posted 14 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

Hi,

Help required
Is there any way so that we can able/disable particular links on a page based on login???
Page will be same for all types of users but hyperlinks shd be made active if the user has credentials of doing that work otherwise shd be visible but inactive.

Thanks in advance

Eric Pascarello

author

Posts: 15385

posted 14 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

The server should not render them as links, that is the only secure way of doing it. Anyone that has any JavaScript knowledge can re-enable them and perform the action.

Eric

Jeanne Boyarsky

author & internet detective

Posts: 41878

909

I like...

posted 14 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

Hemant,
Welcome to JavaRanch!

To expand on what Eric said, it's common to use your server side language to control this. In Java, that would be the JSP. You only write out the link if the user has permission. This also helps by not advertising to hackers what other functions they should try to attack.

Also, you should have another check on the server side to make sure the user has access and didn't just type in a URL.

[OCP 17 book] | [OCP 11 book] | [OCA 8 book] [OCP 8 book] [Practice tests book] [Blog] [JavaRanch FAQ] [How To Ask Questions] [Book Promos]
Other Certs: SCEA Part 1, Part 2 & 3, Core Spring 3, TOGAF part 1 and part 2

Java 8 (verified skill)
Skill verified by Jeanne Boyarsky

JUnit 5 (verified skill)
Skill verified by Jeanne Boyarsky

Don't get me started about those stupid light bulbs.