URL params are always editable regardless of what you do. If you're worried about data errors or sql injections, you can validate every url var. isNumeric() handles all numeric url params. Run it through isNumeric, check your database for data, redirect/show message if there is no data.
Another option is to use URL rewriting. That way, ?myurl=1&myrul2-blah becomes mysite.com/myurl/1/myrul2/blah OR mysite.com/myfile.cfm/myurl/1/myrul2/blah. Search for Ray Camden's URL Rewriting function, it is handy. Bottom line, no exact science here. It depends on your needs/situation/preference(s). On 1/28/07, Scott Pinkston <[EMAIL PROTECTED]> wrote: > > This page describes encrypting all of the url variables so > ?myurl=1&myrul2-blah would display like ?43924j423oi490fsd89yg438 > > The next page decrypts the variables and puts them back into the url > scope. > > http://www.cfdan.com/posts/Securing_your_applications_URL_variables.cfm > > > Might help. > > > >How about instead of appending the variable and using a > >hidden field. > > > >Terry > > > >-----Original Message----- > >From: Richard White [mailto:[EMAIL PROTECTED] > >Sent: Saturday, January 27, 2007 3:44 PM > >To: CF-Talk > >Subject: hiding url variables > > > >Hi, i have a cfm page that uses a javascript function to > >append a variable to a url. I then use the coldfusion url > >variable set to collect the variable in the receiving cfm > >page. > > > >however, the variable data is being displayed in the address > >bar in the browser. is there anyway to hide the variable > >data so that it doesn't show in the address bar? > > > >thanks very much for any help > > > >~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 Experience Flex 2 & MX7 integration & create powerful cross-platform RIAs http:http://ad.doubleclick.net/clk;56760587;14748456;a?http://www.adobe.com/products/coldfusion/flex2/?sdid=LVNU Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:267897 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
