From: Sabherwal, Balvinder (MBS) When I'm creating a text field on the form using C::A, how can I make them read only if need be?
Well... Why don't you just print it as text so that the user can see the value, and then, secondly, create a hidden text field. It will still be a part of your form, just it wont be rendered by the browser for the user to see.
I agree with this if you really think that you need to have it be a part of your form. Also, just to mention it... just because it's 'readonly' doesn't mean the user can't modify it.
If it's vitally important to your application that the user can't modify this value then it's best to save it in a session on the server and then not even make it a part of the form. If you do decided, for whatever reason, to keep it in the form then you should create an md5 hash of the values that you are placing in the form that you don't want modified and place that in the form too. Then check the hash when you get the parameters back.
Just setting it to 'readonly' will not be sufficient security.
-- Michael Peters Developer Plus Three LLP
--------------------------------------------------------------------- Web Archive: http://www.mail-archive.com/cgiapp@lists.erlbaum.net/ http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2 To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
