On 12/8/06, lightbulb432 <[EMAIL PROTECTED]> wrote:
If there's absolutely no information stored on the server, then (assuming somebody could unencrypt the content of those fields) technically somebody could alter the hidden field values, resubmit the form and see something different from what they expected, right?
JSF 1.2 in general and MyFaces 1.1 as well provide the option to encrypt your client-side state so that this is not an issue.