| Body: |
The Doctor wrote:
>In article <1c707$48763ee9$40cba7c9$9611@NAXS.COM>,
>Jonathan N. Little <lws4art@central.net> wrote:
>>Scott Bryce wrote:
>>> Jonathan N. Little wrote:
>>>> *I say "optional" because JavaScript may not always be available can
>>>> be not supported or disabled by client. It can only be used as an
>>>> additional option to server-side validation and not a replace for
>>>> server-side validation.
>>>
>>> Another reason that client side data validation is not reliable is that
>>> there is no guarantee that the data that arrives at the server came from
>>> the form. It would be very easy for a malicious user to bypass the form
>>> entirely.
>>>
>>> Since server side scripts need to validate data and respond to bad data
>>> anyway, I don't bother to validate data on the client. It is just an
>>> extra step, and my Javascript is weak.
>>
>>All true, but what JavaScript can do since it is client-side is quickly
>>tipoff the user of an error without the trip to the server and back. But
>>again, only an artillery feature, all form data should *always*
>>validated server-side. Always.
>>
>
>What about PHP?
Yes.
--
Ed Jay (remove 'M' to reply by email)
Win the War Against Breast Cancer.
Knowing the facts could save your life.
http://www.breastthermography.info
|
