Bellegueulle Damien
Mar 30, 2018, 4:16:01 AM3/30/18
to Fat-Free Framework
Hello ,
What is the best way to protect my GET routes or remove, hide in the url ?
Example , hide or change URL :
/views/modifier_client/MjQ0Nw==
to
/views/
Clear URL alwaya look better than the long URL.
Then all get variable show in you URL string sometime it not good for a security.
Thank you for your help or your ideas :)
Emmanuel
Apr 2, 2018, 8:50:42 AM4/2/18
to Fat-Free Framework
Actually using rewriting at the server level
ex: with
either nginx or Apache or banshee or &co
the request will be innerby forwared to your PHP file , but WITHOUT the ?q=blabla&pi=blibli
clean
ved
Apr 2, 2018, 9:32:43 AM4/2/18
to Fat-Free Framework
Why do you need to hide it?
If, in your example, "MjQ0Nw==" is some kind of secret (although it appears to be just the integer 2447 base64 encoded) then you shouldn't place it in any url, whether is GET, POST or any other http verb because it will always be completely visible and accessible.
If you let us know what you're trying to accomplish, then maybe we can suggest something else.
Reply all
Reply to author
Forward
0 new messages