Validate Post Data in ASP.NET MVC
Question
I have this controller method below:
[HttpPost]
public ActionResult Login(UserDetails userdetails)
What did I do so far ?
- Replaced potential SQL Candidates in my form (via JQuery side , eg. replace '&' by 'amp')
- I have added
ModelState.IsValid()in ServerSide to check.
Are these two checks enough or How should I make sure that userDetails.UserName is free from Injected SQL ? (Like 1=1 SQL Injection attacks)
1 answers
solution1
1 ACCPTED 2018-09-07 19:53:41
使用实体框架,Dapper或常规参数化查询应足够。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
ASP.NET MVC API Post Data
POST data to controller with ASP.NET MVC
Asp.net MVC post data to controller
How to correctly validate data in ASP.NET MVC
Validate data before inserting to Kendo Grid in ASP.NET MVC
validate date of birth in MVC asp.net
Validate login form ASP.NET MVC
Validate two buttons in Asp.net MVC
Validate sessions in ASP.NET Core MVC
How to validate textboxes in ASP.NET MVC
Related Tags