stackoom
  简体   繁体   中英

Server-side Userinput Validation

 原文  2016-02-25 13:37:53       javascript/ sql/ database/ stored-procedures/ sapui5

Question

We work with SAP-Fiori / SAPUI5 / OpenUI5. Those frameworks are based on JS only. Due to manipulation issues on JS, we must not validate user inputs only via JS / through frontend. So a dev gave me the advice to verify and validate User Inputs (through form eg) via Stored Procedures.

Is this a good practice? Thanks for any help!

1 answers

solution1
 0  2016-03-04 09:39:24

There are checks which can be performed in the frontend and there are checks which can be performed in the backend.

frontend: You can do basic input validation, like zip count, if value is not langer than x digts. Or you can check that it is of the right type. You can filter out bad characters and so on.

backend: this is where you can check the pre-checked inputs against some data from backend systems, eg if the id of the user exists, authorization and so on.

So you can still do some frontend checks for basic input and security related things in the backend.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Server-side validation for form AngularJS: Server-side validation of multiple forms Server-side data validation in Meteor Struts 1.2 server-Side JavaScript Validation server-side validation with socket.io Conflict with server-side and client-side validation Password confirmation(form validation) from server-side to client side JavaScript: client-side vs. server-side validation Same regex for client-side and server-side validation Both client-side and server-side validation for my game
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM