News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

NETTUTS.com:
Secure Your Forms With Form Keys
June 12, 2009 @ 13:09:12

In this new tutorial NETTUTS.com suggests an alternative method to secure your website's forms - "form keys".

Security is a hot topic. Ensuring that your websites are secure is extremely important for any web application. In fact, I spend 70% of my time securing my applications. One of the most important things we must secure are forms. Today, we are going to review a method to prevent XSS (Cross-site scripting) and Cross-site request forgery on forms.

The "form keys" are special hashes generated each time the form is generated and submitted along with the other POSTed information to verify that the form came from the right place. The example they include shows how to create a simple login form that uses a class for generation and validation of the form's key.

0 comments voice your opinion now!
tutorial key form secure


blog comments powered by Disqus

Similar Posts

Nikita Popov: Cooperative multitasking using coroutines (in PHP!)

CodePoets.co.uk: How to use PHP and PEAR MDB2 (Tutorial)

Adam Gotterer's Blog: Building an Object Collection Manager with the Standard PHP Library (SPL)

Tim Koschuetzki's Blog: How To Transform HTML To Textile Markup - The CakePHP TextileHelper Revisite

Christoph Dorn's Blog: FirePHP on Magenting


Community Events





Don't see your event here?
Let us know!


deployment threedevsandamaybe developer code tips conference series community api interview framework laravel language list development application zendserver release introduction podcast

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework