matfish Posted September 11, 2006 Share Posted September 11, 2006 Hi-ya,Is POST better than GET in regards to a login script? Obviously GET you can enter the string in the brower address bar but they would need the correct username/password and ID's, but is there a way around POST? With post - it doesnt allow you to do that in the address bar?Thanks Quote Link to comment Share on other sites More sharing options...
Wintergreen Posted September 11, 2006 Share Posted September 11, 2006 Post requires a form using method=post, so it should be 'safer' than get I guess, but as long as you check the username and password typed by the user for bad input, there should be no problem. I mean the only difference in this case would be that they hadn't typed the username and password into the boxes. One other thing, if your login check is on a separate page, then unless they know the name of the page then no one can really do much Quote Link to comment Share on other sites More sharing options...
matfish Posted September 11, 2006 Author Share Posted September 11, 2006 Thats cool - thanks for your reply. Quote Link to comment Share on other sites More sharing options...
tarenberg Posted September 11, 2006 Share Posted September 11, 2006 You should use the Postr method for security reasons. Since the log in info appears in the address bar it is visible to everyone. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.