ValidateAt parameter is effectively only client side (was: "re[2]: [ACFUG Discuss] Password CFinput regular expression - throws alert/error after correction also")

Mischa Uppelschoten ext 10 Mon, 09 Mar 2009 12:06:32 -0700

: IIRC cfinput will always use a hidden form field on the client to  
: force server side validation.


Dean is right:

<cfif isdefined("form")>
 <cfdump var="#form#" show="MyNumber">
</cfif>

<cfform name="cfformtest">
 <cfinput type="Text" validate="integer" validateat="OnServer" name="MyNumber">
 <cfinput type="Submit" value="submit" name="Submit">
</cfform>

<form name="RegularForm" method="post">
 <input type="Text" name="MyNumber">
 <input type="Submit" value="submit" name="Submit">
</form>

You can submit whatever you want using the second form.

I'm a bit disappointed because Adobe seems to have thought of and made an 
effort to prevent a similar situation with their Ajax implementation: 
_cf_clientid is appended to the url for each http request.
/m



-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform

For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by http://www.fusionlink.com
-------------------------------------------------------------

ValidateAt parameter is effectively only client side (was: "re[2]: [ACFUG Discuss] Password CFinput regular expression - throws alert/error after correction also")

Reply via email to