Preventing erroneous AJAX Calls by the user

I have a webpage in which the user is awarded X points on clicking a button. The button sends a AJAX request(JQuery) to a PHP file which then awards the points. It uses POST. As its client side, the php file, parameters are visible to the user. Can the user automate this process by making a form with the same fields and sending the request ? How can I avoid this type of CSRF ? Even session authentication is not useful.
stackoverflow.com/questions/3315914/…

以上就是Preventing erroneous AJAX Calls by the user的详细内容,更多请关注web前端其它相关文章!

赞(0) 打赏
未经允许不得转载:web前端首页 » jQuery 答疑

评论 抢沙发

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址

前端开发相关广告投放 更专业 更精准

联系我们

觉得文章有用就打赏一下文章作者

支付宝扫一扫打赏

微信扫一扫打赏