Custom control development - Security issues
-
Hi All, I am developing a datetime picker custom control. I have written a JavaScript library to view dates in a popup window. In the markup of this control I am loading a JSON object which is stored in a hidden field. This JSON object contains some static data like date format and date separator of the control ect. This static data are using to build popup window. Here I want your expert advice. Are there any security problems in this design? Is it possible to crack JSON object stored in hidden field and smash the control? I can encrypt the JSON object. But the decryption algorithm can only write in JavaScript. So it is easy to trace. Kindly guide me on this issue. Thanks and regards, Palli
-
Hi All, I am developing a datetime picker custom control. I have written a JavaScript library to view dates in a popup window. In the markup of this control I am loading a JSON object which is stored in a hidden field. This JSON object contains some static data like date format and date separator of the control ect. This static data are using to build popup window. Here I want your expert advice. Are there any security problems in this design? Is it possible to crack JSON object stored in hidden field and smash the control? I can encrypt the JSON object. But the decryption algorithm can only write in JavaScript. So it is easy to trace. Kindly guide me on this issue. Thanks and regards, Palli
yes .. Javascript always have this problem. I think you can use serverside controls to solve this security problems. Use ICallbackEventHandler to handle callbacks on every event of your html calendar. actually callbacks works with javascript also. And easier to handle too.
Abhishek Sur