安全跨域提交表单 [英] Secure Cross Domain Form Submission
问题描述
我有一个客户想继续举办的形式与第三方供应商是谁,但要求我重新设计他们的网站。不幸的是,现在的形式是在一个iframe主办的第三方的服务器上,或者只是一个直接链接到第三方。
的形式是丑陋和劣质的,但它是什么。我不得不使用它们处理数据。
不过,我喜欢它,如果我可以使自己的形式,让他们看起来像网站的其余部分,并很好地工作。
整蛊位:该表格的信息必须是安全的。无财务数据,但简历,以及潜在的一些病历可以提交。
所以,如果我创建一个表单和主持它与SSL证书的服务器上,并将其张贴到第三方的安全服务器 - 为数据安全
如果没有,什么选项(如果有的话)我需要实现我的一个很好看的形式,安全地张贴数据到他们的服务器的目标是什么?第三方对他们没有任何形式的自定义选项。
感谢。
所以,如果我创建一个表单和主持它与SSL证书的服务器上,并将其张贴到第三方的安全服务器 - 为数据安全
是的,它是安全的。用户的形式将张贴到 https://thirdpartyserver.com ,这将确保一个加密的帖子。
I have a client who would like to continue to host their forms with a 3rd party vendor, but has asked me to redesign their site. Unfortunately, right now the forms are hosted in an iframe on the 3rd Party's servers, or just a direct link to the 3rd party.
The forms are ugly and poorly made, but it is what it is. I have to use them for handling the data.
However, I'd love it if I could make the forms myself, have them look like the rest of the site, and work nicely.
Tricky bit: The form information MUST be secure. No financial data, but resumes, and potentially some medical history could be submitted.
So if I create a form and host it on a server with an SSL certificate, and post it to the 3rd party's secured server - is the data secure?
If not, what options (if any)do I have to achieve my goal of a nice looking form that securely posts data to their server? The 3rd party has no customization options for their forms.
Thanks.
解决方案So if I create a form and host it on a server with an SSL certificate, and post it to the 3rd party's secured server - is the data secure?
Yes, it is secure. The user's form will post to https://thirdpartyserver.com, which will ensure an encrypted post.
这篇关于安全跨域提交表单的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
