Hi all,
I have a public form. Users are doing there one time orders. So fields like address, emails and cell numbers are entered. Web page works like so. I have small form with mandatory fields. After submitting that new windows opens (redirect plugin) where additional information can be added. Also already entered data is seen there. After submission this form order is done. Now comes a problem how to protect data. I don't like to use login (user, passwd) solution. This will make whole system too clumsy. Right now I see problem that users basically can see (hack) to other users data using URL and playing with different rowid's. Like:
http://AAAAAA/?option=com_fabrik&view=form&fabrik=4&rowid=32&isMambot=1
Basically changing rowid number (32) is possible to see someones data.
My questions how to avoid that? How to do form filling so that it can not opened anymore? Your ideas please.
I have a public form. Users are doing there one time orders. So fields like address, emails and cell numbers are entered. Web page works like so. I have small form with mandatory fields. After submitting that new windows opens (redirect plugin) where additional information can be added. Also already entered data is seen there. After submission this form order is done. Now comes a problem how to protect data. I don't like to use login (user, passwd) solution. This will make whole system too clumsy. Right now I see problem that users basically can see (hack) to other users data using URL and playing with different rowid's. Like:
http://AAAAAA/?option=com_fabrik&view=form&fabrik=4&rowid=32&isMambot=1
Basically changing rowid number (32) is possible to see someones data.
My questions how to avoid that? How to do form filling so that it can not opened anymore? Your ideas please.