在asp.net中禁用Url [英] Disable Url in asp.net
本文介绍了在asp.net中禁用Url的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我有一个gridview.And当我从超链接中的查询字符串传递数据导航url ..我想隐藏或禁用Url用于安全目的。
< asp:TemplateField HeaderText =Title>
< ItemTemplate>
< asp:HyperLink ID =hypTitlerunat =serverText ='<%#Bind(MENU_NAME)%>' NavigateUrl ='<%#string.Format(./ frmMenuMapping.aspx?MenuId = {0}& ContentId = {1},
HttpUtility.UrlEncode(Eval(MENU_ID)。ToString() ),HttpUtility.UrlEncode(Eval(cmsContentManager.CONTENT_ID)。ToString()))%>'>< / asp:HyperLink>
< / ItemTemplate>
< / asp:TemplateField>
解决方案
正如 Kornfeld Eliyahu Peter [ ^ ]不要在查询字符串中传递敏感数据。它会清楚地显示数据。尝试其他ways [ ^ 在页面之间传递数据
或者如果你想通过查询字符串发送数据然后加密它。
查看以下链接:
HTT ps://blog.httpwatch.com/2009/02/20/how-secure-are-query-strings-over-https/ [ ^ ]
http://security.stackexchange.com/questions/29598 / should-sensitive-data-ever-be-in-the-query-string [ ^ ]
http://stackoverflow.com/questions/2629222/are-querystring-parameters-secure-in-https-http- ssl [ ^ ]
加密查询字符串 [ ^ ]
这个
在asp.net中为查询字符串重写URL? [ ^
I have a gridview.And when i pass data from query string in hyperlink navigate url..I want to hide or disable Url for security purpose.
<asp:TemplateField HeaderText="Title">
<ItemTemplate>
<asp:HyperLink ID="hypTitle" runat="server" Text='<%# Bind("MENU_NAME") %>' NavigateUrl='<%# string.Format("./frmMenuMapping.aspx?MenuId={0}&ContentId={1}",
HttpUtility.UrlEncode(Eval("MENU_ID").ToString()), HttpUtility.UrlEncode(Eval("cmsContentManager.CONTENT_ID").ToString())) %>'></asp:HyperLink>
</ItemTemplate>
</asp:TemplateField> 解决方案
As said by Kornfeld Eliyahu Peter[^] Don't pass sensitive data in query string.It will clearly shows the data as it is.Try other ways [^]to pass data between pages
Or still if you wants to send data over Query String then encrypt it.
Check these links:
https://blog.httpwatch.com/2009/02/20/how-secure-are-query-strings-over-https/[^]
http://security.stackexchange.com/questions/29598/should-sensitive-data-ever-be-passed-in-the-query-string[^]
http://stackoverflow.com/questions/2629222/are-querystring-parameters-secure-in-https-http-ssl[^]
Encrypting Query Strings[^]
and this
URL Rewriting in asp.net for a query string ?[^]
这篇关于在asp.net中禁用Url的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
