jasongodoy

WebDirect URL Manipulation & Security

Discussion created by jasongodoy on Apr 14, 2014
Latest reply on Apr 15, 2014 by Malcolm

Hello all,

 

I just started a project that will need to utilize a web technology that by all accounts WebDirect seemed to be a good fit for. After getting my feet wet for bit with WebDirect, it wasn't too long before I noticed that the name of the layout I currently was on in the URL bar of my browser. What I found to be quite dangerous is that you could easily change the layout parameter in the URL from something like "Login" to "Orders" and WebDirect will go to that page showing records from that layout. Is this a bug or a feature?

 

It would be nice if WebDirect would just have a clean URL with the name of the FileMaker file name (i.e. http://www.something.com/filename) instead of needing to show extra information (layout name, view style, record number, etc.) that is already contained in the status bar (if you decide to show it).

Outcomes