#1. Ding, ding, ding. We have a winner! Bryan, that's the easiest way to do it. #2. Bryan, what I am talking about is the "save as" feature in the browser. The form is copied to the desktop, it is double clicked (and maybe edited) and then resubmitted. But, I would imagine, that using Point #1 above would solve this problem as well. :)
~Che -----Original Message----- From: Bryan Stevenson [mailto:[EMAIL PROTECTED] Sent: Monday, March 13, 2006 2:08 PM To: CF-Talk Subject: Re: Re-Send: Preventing "Cou-pon" Generation Fraud. 1st...it's coupon and not cou-pon ;-) > #1. How do I stop the customer from hitting the "back" button to resubmit > the form again? Namely, how do I stop the same set (or a different set) of > emails from receiving these cou-pons? I realize the "back" button issue has > come up in various incarnations before... what was the consensus on how to > best prevent it? Simple...part of the send routine is to check to see if any coupons for the current order have already been sent (yes you'll need to track the sending in the DB). Then just don't allow the coupons to be sent if some have already been sent. > > #2. How do I prevent the web form from being downloaded and submitted from > someone's desktop. Namely, what is the logic I should implement that makes > certain that the form comes from my web server before I process? How would they submit a web form from their desktop? I think you're talking about form spoofing which is not a copy of your form on soemone's desktop. Anyways....same rule applies...if that order ID has already had coupons sent...it's done...do not allow the re-send to occur. HTH Cheers Bryan Stevenson B.Comm. VP & Director of E-Commerce Development Electric Edge Systems Group Inc. phone: 250.480.0642 fax: 250.480.1264 cell: 250.920.8830 e-mail: [EMAIL PROTECTED] web: www.electricedgesystems.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:235250 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
