Re: Methods of protecting "invoice page"

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 52398
interpreted = N
texte = Thanks, all our sites run on WebDNA. We're just chewing over the various ways to prevent anyone else (apart from the customer placing the order) being able to access data stored in an order file. We currently use a combination of both IPaddress comparisons and cookie comparing. Ideally we'd like to avoid having to force people to log in, and if we did we'd have to build it so that they could still obviously only see their data. Mark. On Thursday, August 21, 2003, at 07:07 PM, Donovan wrote: > Mark, not an answer really but a comment... > > I first found CW of UK through a Music Equipment book I found > at borders. I used to dream about ordering one of your systems. > That must have been about 5 or 6 years ago?? (before I dove into > WebDNA.) :-) Pretty cool to see that the site uses WebDNA. > > Anyway, what are you trying to protect exactly? > > Donovan > > > Mark Derrick wrote: >> Hi all, >> Just looking to get a feel for the way most people protect their >> "invoice" pages within an online store. >> As I see it, there are a few options: >> 1) Add IP address to order file, and compare that to current IP >> address on each protected invoice page >> 2) Add Cookie ref to order file, and compare that to current Cookie >> ref on each protected invoice page >> 3) Force customers to register, and then get them to log in, thus >> using the [protect] tag. >> I guess you could also combine any two/three of the above methods too. >> Any thoughts/suggestions on this topic? >> Thanks. > > > > -- > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o > DONOVAN D. BROOKE > Eucalyptus Design > Developer / Consultant > <-Web Development (specializing in eCommerce), -> > <-Graphic Design, and Pre-Press Consultation -> > > ADDRESS:> Donovan Brooke > DBA Eucalyptus Design > P.O. Box 260153 > Madison, WI 53726-0153 > > PH:> 1.608.592.3567 > email:> dbrooke@euca.us > Web:> http://www.euca.us > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Methods of protecting "invoice page" ( Mark Derrick 2003)
  2. Re: Methods of protecting "invoice page" ( "Gary Krockover" 2003)
  3. Re: Methods of protecting "invoice page" ( Donovan 2003)
  4. Methods of protecting "invoice page" ( Mark Derrick 2003)
Thanks, all our sites run on WebDNA. We're just chewing over the various ways to prevent anyone else (apart from the customer placing the order) being able to access data stored in an order file. We currently use a combination of both IPaddress comparisons and cookie comparing. Ideally we'd like to avoid having to force people to log in, and if we did we'd have to build it so that they could still obviously only see their data. Mark. On Thursday, August 21, 2003, at 07:07 PM, Donovan wrote: > Mark, not an answer really but a comment... > > I first found CW of UK through a Music Equipment book I found > at borders. I used to dream about ordering one of your systems. > That must have been about 5 or 6 years ago?? (before I dove into > WebDNA.) :-) Pretty cool to see that the site uses WebDNA. > > Anyway, what are you trying to protect exactly? > > Donovan > > > Mark Derrick wrote: >> Hi all, >> Just looking to get a feel for the way most people protect their >> "invoice" pages within an online store. >> As I see it, there are a few options: >> 1) Add IP address to order file, and compare that to current IP >> address on each protected invoice page >> 2) Add Cookie ref to order file, and compare that to current Cookie >> ref on each protected invoice page >> 3) Force customers to register, and then get them to log in, thus >> using the [protect] tag. >> I guess you could also combine any two/three of the above methods too. >> Any thoughts/suggestions on this topic? >> Thanks. > > > > -- > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o > DONOVAN D. BROOKE > Eucalyptus Design > Developer / Consultant > <-Web Development (specializing in eCommerce), -> > <-Graphic Design, and Pre-Press Consultation -> > > ADDRESS:> Donovan Brooke > DBA Eucalyptus Design > P.O. Box 260153 > Madison, WI 53726-0153 > > PH:> 1.608.592.3567 > email:> dbrooke@euca.us > Web:> http://www.euca.us > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o > > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/ > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Mark Derrick

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Sorry if this is really stupid but.. (2000) .htaccess to make WebDNA serve HTML (2007) Re:listfiles-looking for slick solution (1997) Date Sorting (1997) RE: [WebDNA] Installation problems for IIS 6 (2010) Root Folder problems cont. (1998) WebSTAR/WebCat is serving .db files! (1999) WebDNA v6 & MySQL (2008) Limit on nested [ShowIf]'s? (1997) [defined]ish (1997) Web Merchant process after credit card clears (1998) RE: WebDNA-Talk searchable? (1997) PIXO support (1997) Mac Vs WindowsNT (1997) Summing fields (1997) Using [purchase] (1998) WebTen and WebCat (1997) Bug Report, maybe (1997) setheader and retrieve it immediatly (2001) Multiple fields on 1 input (1997)