People can only use scripts if they e accessed from a form that lives on my local system, right?
Not right. Although you can restrict access to a script to certain IP addresses or to user name/password combinations, you can’t control how the script is invoked. A script can be invoked from any form, anywhere in the world. Or its form interface can be bypassed entirely and the script invoked by directly requesting its URL. Don’t assume that a script will always be invoked from the form you wrote to go with it. Anticipate that some parameters will be missing or won’t have the expected values. When restricting access to a script, remember to put the restrictions on the _script_ as well as any HTML forms that access it. It’s easiest to remember this when the script is of the kind that generates its own form on the fly.
Related Questions
- Is it true that people will have to drive to a local library and fill out a form to order library materials from ILN libraries outside of Santa Clarita?
- People can only use scripts if they e accessed from a form that lives on my local system, right?
- How can the right to water make a difference in peoples lives?
