On 11月22日, 下午7時15分, "Fabien Meghazi" <[EMAIL PROTECTED]> wrote: > > In non AJAX apps, automatic checking can be prevented using Captcha in > > the registration page. > > As you could do with an AJAX application, I don't understand what > would prevent you to do so. > What main difference do you see between a GET or POST made by the > browser when submitting a plain old form and a GET or POST made using > XMLHttpRequest ?
Hello, let consider a simple membership registration page 1. Non AJAX User need to select a username, fill in the captcha, and submit the form => no automation possible as need to fill in the captcahe 2. AJAX User can select the username via AJAX API, where the possible automation came in
