| ginkeq | just the name of a state file |
| jagerman | A per-user state file? |
| ginkeq | i think im just gonna say something like, "click here to proceed" and leave it hidden ya |
| lupin_sansei | You need to think about what happens if a naughty user looks at the source of your HTML, and changes the values of the hidden fields |
| jagerman | Well, quite common in that case is to generate some sort of ID (maybe a long random string) which is the filename in some directory |
| lupin_sansei | Very easy to do in FF. There's a toolbar that lets you view the hidden fields as text fields, and change their values by typing over them. |
| jagerman | But *don't* use sequential numbering |
| lupin_sansei | Why don't you use CGI::Session? It's not bad |
| jagerman | lupin_sansei: It's an assignment :) |
| lupin_sansei | Assuming they don't let you use that then use a hash, or a random ID like jagerman said |
| jagerman | lupin_sansei: Well, he has to write two separate programs; one to handle the login, then another to do everything else. |
| ginkeq | ya the state file is like 40 characters |
| lupin_sansei | jagerman: I have a login script somewhere that uses the random ID technique. When a user logs in I assign them a random unique ID and put it in their cookie, plus a record in my database. Then as they move around my site I can store state data about them in my database. But nothing is revealed on the client side. whoops I mean ginkeq |
| simcop2387 | hmm |
| action | simcop2387 readies his op powers |
| simcop2387 | readies his op powers |
| action | CPAN upload: Net-Pavatar-1.01 by KARJALA |
| CPAN | upload: Net-Pavatar-1.01 by KARJALA |
| simcop2387 | just in case |
| lupin_sansei | Someone should make a "web design patterns" book or site describing these web building blocks so people don't need to keep reinventing the wheel all the time |
| Chris62vw | GumbyBRAIN, donkey kong |
| GumbyBRAIN | Like maybe your doctor about chemical castration. Has anyone even use the radio yesterday and was like, "no!" and got king kong had been screaming. |
| simcop2387 | GumbyBRAIN: SHAM-PAG-KNEE |
| GumbyBRAIN | You know, i knew nothing of .net remoting some month or two above the knee? |
| Jmax- | GumbyBRAIN: donkey dong |
| GumbyBRAIN | Dong dong dong. |
| cfedde | GumbyBRAIN: GumbyBrain |
| GumbyBRAIN | elisbeth is tired of my projects have the opportunity to change the thing is, gets to results page 35, gives up. |
| majikman | how do i match the string ",\nCONSTRAINT"? |
| mauke | /,\nCONSTRAINT/ |
| Jmax- | heh! avar's gone too? so, avar, randal, and somian |
| majikman | hmm... i must be doing something wrong |
| buu | Jmax-: Where the hell is avar? |
| Jmax- | not here! |
| anal | hello |
| t35t0r | belkin got messed up class action lawsuit did everyone get an email? |
| Jmax- | no, i didn't |