Pass hidden values in ASP

**Meelis Lilbok** · Jul 19 '05, 09:24 AM

Re: Pass hidden values in ASP

Store this info in Session()

Mex

<VK> wrote in message news:%238D$7dKx DHA.2712@TK2MSF TNGP11.phx.gbl. ..[color=blue]
> Hello:
>
> We are integrating 3rd party s/w which would process online
> transactions.
>
> this product would require that we pass some sensitive information over
> the web, using FORM-POST-Hidden fields method. On viewing source this
> page we are able to see this info. To overcome this - steps followed.
>
> PageA.asp - collect information, exists on our server
> PageB.asp - request info from PageA.asp, append sensitive information,
> automatically POST to client server - this code exists on our server.
>
> The issue arises that while connecting from PageB.asp to client server,
> there is a little delay which shows the hidden page.
>
> Is there some other way to overcome this?
>
> Thanks.
> VK
>
>
>
>
>
>
>
> *** Sent via Developersdex http://www.developersdex.com ***
> Don't just participate in USENET...get rewarded for it![/color]

VK · Jul 19 '05, 09:24 AM

Re: Pass hidden values in ASP

You mean, like:

<INPUT TYPE="HIDDEN" NAME="VALUE1"
VALUE="<%=Sessi on("value1")%>" >

On viewing source, this value is visible. I have tried this.

thanks.

*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!

**Meelis Lilbok** · Jul 19 '05, 09:24 AM

Re: Pass hidden values in ASP

No i mean, why you must youse hidden fields?
Just store on first page this "sensitive" data in Session()
and read on second page :)

M.

**Luis** · Jul 19 '05, 09:24 AM

Re: Pass hidden values in ASP

Further ypu might want to do some sort of encryption on the data before
storing it.

Cheers, Luis

"Meelis Lilbok" <mex@hot.ee> wrote in message
news:%236RtakLx DHA.2136@TK2MSF TNGP10.phx.gbl. ..[color=blue]
> No i mean, why you must youse hidden fields?
> Just store on first page this "sensitive" data in Session()
> and read on second page :)
>
>
> M.
>
>[/color]

VK · Jul 19 '05, 09:24 AM

Re: Pass hidden values in ASP

Meelis,

While reading this session object, we are able to view this value. the
only way the client wants/reads/interprets this information is by form,
post, hidden field.

Luis,
when you say - encryption on the data, you mean secure ASP page using
HTTPS(which we are doing), or you mean the data itself? How would we
perform encryption on the data itself?

Many thanks.

*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!

**Jeff Cochran** · Jul 19 '05, 09:25 AM

Re: Pass hidden values in ASP

On Wed, 17 Dec 2003 07:10:35 -0800, VK <VK> wrote:
[color=blue]
>You mean, like:
>
><INPUT TYPE="HIDDEN" NAME="VALUE1"
> VALUE="<%=Sessi on("value1")%>" >
>
>On viewing source, this value is visible. I have tried this.[/color]

No, use session variables. Not passing through a form. There are
limits to sessions (cookies being the biggie for most people) but they
should work fine. Take a look at this for sample shopping cart code:

http://www.aspfaq.com/cart/

Jeff

**Peter Foti** · Jul 19 '05, 09:25 AM

Re: Pass hidden values in ASP

<VK> wrote in message news:OyweoCMxDH A.1596@TK2MSFTN GP10.phx.gbl...[color=blue]
> Luis,
> when you say - encryption on the data, you mean secure ASP page using
> HTTPS(which we are doing), or you mean the data itself? How would we
> perform encryption on the data itself?[/color]

I think he meant encrypting the data as you pass it along. It would mean
encrypting it as it was collected and then decrypting it just before sending
it to the third party page. You could use a component like ASPEncrypt to
handle the encryption/decryption.

Regards,
Peter Foti

**Luis** · Jul 19 '05, 09:25 AM

Re: Pass hidden values in ASP

exactly. you can use a componet as mentioned hereunder or just some kind of
funcion you make up to do the job.

cheers, Luis

"Peter Foti" <peterf@systoli cNOSPAMnetworks .com> wrote in message
news:vu1f5or6lc k465@corp.super news.com...[color=blue]
> <VK> wrote in message news:OyweoCMxDH A.1596@TK2MSFTN GP10.phx.gbl...[color=green]
> > Luis,
> > when you say - encryption on the data, you mean secure ASP page using
> > HTTPS(which we are doing), or you mean the data itself? How would we
> > perform encryption on the data itself?[/color]
>
> I think he meant encrypting the data as you pass it along. It would mean
> encrypting it as it was collected and then decrypting it just before[/color]
sending[color=blue]
> it to the third party page. You could use a component like ASPEncrypt to
> handle the encryption/decryption.
>
> Regards,
> Peter Foti
>
>[/color]

VK · Jul 19 '05, 09:29 AM

Re: Pass hidden values in ASP

Jeff:

Apologize if I seem dense, you mean to define session variable in
global.asa file and then on one of asp pages submit this as hidden
value?

global.asa
Session("PASSWO RD") = "password"

in .asp page
<Input type="hidden" name="PASSWORD" >

would this work?

Many thanks.

*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!

Pass hidden values in ASP

Pass hidden values in ASP

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment