stackoom
  简体   繁体   中英

Failing API query outputs API password to the user frontend

 原文  2014-09-27 14:28:43       php/ json/ wordpress/ api/ security

Question

I have a website with a user input. After the user inputs something, an API (JSON) is queried based on the input. Every now and then the API query fails and outputs the query URL. 

 file_get_contents(http://...id=...password=...&input=...): failed to open stream: HTTP request failed! HTTP/1.1 400 Bad Request in /www/htdocs/....php

The query URL contains a password which is, of course, secret. How can I prevent the page to output the failed request?

Best Benjamin

1 answers

solution1
 1 ACCPTED  2014-09-27 14:39:30

You should have error reporting off for a production server, but as a quick fix you can use the error suppression symbol @ : 

$resp = @file_get_contents(...);

Obviously you will still need to handle a failed call by checking the return value: 

if($resp==false)//failed

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question External API query: Is my password visible to the user? Password Hashing API Query Transmit user password for a rest api Validate User in PHP API via JS frontend framework (VUEJS) Concept Storing user password in PHP for RESTful API authentication Moodle API create user, generate password and email user API-PLATFORM User Update Password Or user profile CRUD api - connecting frontend and backend Is Api Result the same as the frontend result? PHP Unable to update user password through Google Directory API 2.0
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM