堆栈内存溢出
  简体   繁体   English

Rails4-如何通过Ajax安全地接收和发送JSON数据并进行存储?

[英]Rails4 - How to receive and send JSON data securely through Ajax and store it?

 原文  2014-11-07 18:12:03       javascript/ ruby-on-rails/ ajax/ json/ ruby-on-rails-4

问题描述

I have a page(like https://www.helloabc.com/han.html ) that is loaded inside an iframe on an app of different domain. 我有一个页面(如https://www.helloabc.com/han.html ),该页面已加载到其他域的应用程序的iframe中。 I added the following to enable loading the page in an iframe to remove the error("Refused to display document because display forbidden by X-Frame-Options"). 我添加了以下内容以启用在iframe中加载页面以消除错误(“拒绝显示文档,因为X-Frame-Options禁止显示”)。 

config.action_dispatch.default_headers['X-Frame-Options'] = "ALLOW-FROM https://xyz.com"

The iframe page sends data through ajax json to another page as follows . iframe页面通过ajax json将数据发送到另一个页面,如下所示。 

 $.ajax({
      url: 'https://www.helloabc.com/hello',
      type: 'POST',
      dataType: 'json',
      data: {
        "url"  : hjurl,
        "data"   : senddatavar
      },
      success: function(a){
          console.log("success");
          console.log(a.message);
      },
      error: function(request, status, error) {
      console.log("error");
      }
    });

I receive 200 ok in my iframe page. 我在iframe页面中收到200 ok。 

heroku[router]: at=info method=POST path="/hello" host=www.helloabc.com request_id=ac3ed869-75cc-484f-94ea-65ea2fccbb9e fwd="117.203.154.1" dyno=web.1 connect=3ms service=26ms status=200 bytes=900
app[web.1]: Started POST "/hello" for 117.203.154.1 at 2014-11-07 16:45:29 +0000
app[web.1]: Processing by HomePageController#hellojson as JSON
app[web.1]:   Parameters: {"url"=>"https://abc.yupp.com/hs/_/krki5gea", "data"=>{"0"=>{"id"=>"937bacaeb0f928", "person"=>{"id"=>"1984762436", "dName"=>"zzzzz", "image"=>{"url"=>"https://sbc/photo.jpg"}}, }}}
app[web.1]: Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.0ms)

I am new to rails. 我是新手。 I don't know how to grab this data and store it. 我不知道如何获取这些数据并将其存储。 And I dont know how to do it the right way. 而且我不知道如何正确地做。
Can anyone please share what is the best practice to send data through ajax securely and store it? 谁能分享通过ajax安全发送数据并存储数据的最佳实践是什么?

1 个解决方案

解决方案1
 1 已采纳  2014-11-13 14:54:07

I used params in the following controller to get the data and save it in table 我在以下控制器中使用了params来获取数据并将其保存在表中 

  def hellojson

  m = Haout.new      

  m.url = params["url"]
  m.image = params["data"]["0"]["person"]["image"]["url"]

then i used conditions and based on conditions I did m.save and m.update_attributes 然后我使用条件,并根据条件我做了m.save和m.update_attributes

It is secure if https is used 如果使用https是安全的

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何通过Ajax接收,发送和存储json数组 - How to receive ,send and store a json array through ajax 如何在phonegap android中安全地存储json数据? - How to store a json data securely in phonegap android? 如何通过jQuery Ajax发送Json数据和文本框数据 - How to send Json data and textbox data through jQuery ajax 如何从json接收数据并将其存储到变量中? - How to receive data from json and store it into a variable? 如何发送和接收大型JSON数据 - How to send and receive large JSON data 如何在Vanilla JS中发送AJAX发布请求并接收回JSON数据? - How to send AJAX post request and receive back JSON data in Vanilla JS? 如何在PHP中接收ajax发送的JSON数据 - how to Receive JSON data sent by ajax in PHP 如何通过AJAX将JSON发送到PHP? - How to send JSON to PHP through AJAX? Colorbox和Ajax,发送和接收数据 - Colorbox and ajax, send and receive data 如何发送发布请求并在Rails中接收json - how to send a post request and receive json back in rails
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM