also - if you fully scope all your variables, (form.* url.* variables.*) it
prevents people from (easily) changing a variable they should not change...
(although the standard caveats about manually submitted http requests would
still apply)
-----Original Message-----
From: Jim McAtee [mailto:[EMAIL PROTECTED]]
Sent: 09 July 2001 08:30
To: CF-Talk
Subject: Re: Is it really POST?
Check the value of the cgi variable CGI.REQUEST_METHOD.
Jim
----- Original Message -----
From: "Michael Lugassy" <[EMAIL PROTECTED]>
To: "CF-Talk" <[EMAIL PROTECTED]>
Sent: Sunday, July 08, 2001 12:40 PM
Subject: Is it really POST?
> How can I check if the .cfm file was submitted using POST and not GET?
> (I'm trying to prevent, as possible, people to submit the params using URL
and not form fields).
>
> Thanks,
>
> Michael Lugassy
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
