View source code reveals all the content of my database

idy

Hello !

I have put the results of an SQL query into a PHP array. I then pass on this array into a javascript array to manipulate these data in javascript (especially with google maps). But if I click on View source code, anyone can display the full content of this javascript array. How could I hide these data ?

Thanks for your help !

Piranha

Javascript is handled by the web browser, so it is only natural that everything is in the source code. Maybe it is possible to do the same thing in PHP? Or maybe you can change the code to make it be less results from your database? What I am aware of this is the only possibilities, but I might be wrong and there might be ways to hide it even in Javascript.

MarkR

You can't hide anything client-side from the user.

You could use (e.g.) an AJAX request to fetch it, doing authorisation checks each time to ensure that only the data the user should see are available.

You must only send data to the client side that the user is authorised to view - this is your responsibility as a developer.

Mark