hiding parameters in url

Anon

Hi:

How do you hide the parameters in your url?
like
http://vhl.com?name=tom&age=16

how do you hide everything after ?

Regards,
vhl

hometoast

this is basic http/html.
you need to use the 'post' method instead of 'get' method in your form.

bentman

posting with form would hide them from the url, but he didn't say he was using a form.

or encode them somehow and make the part of the url, and then process the url in the target page. there are a bunch of ways to do that, depending on how well you want the info hidden.

look up 'md5', 'base64_encode', & 'crypt' in the php.net docs, or on the docs here. read the comments etc. for some discussion.

cheers,
-ben

[deleted]

Alternatively, you could hide them by using frames.
Create a frameset consisting of just one big frame, and load your page in it. Now everything should still work, but the URL's are nolonger displayed at all.

Anon

depends on if they want the data 'hidden' or 'not accessible'

[deleted]

Hmmm.. yes but... how does encrypting the parameter data help in either of those?

For the 'hiding' part, you just get a large alhpanumeric string instead of a list of parameters.

For the 'making unaccessible': Rule #1 in security; if you don't want your enemy to get your data, then don't make it available in any form, ie: use numeric values that are translated to the real values by the script.

cordex

Hey vincent (not Vincent - the old one), I think our replacements have arrived!

grin

-Ben (the old one)

[deleted]

lol that would save me a lot of work :-)

rfrid

Use JavaScript client side to write it to a cookie then pick it up in the cookies collection at the server. The cookie can also only be read by the hosting domain so it will provide a little bit of security.

Hope this helps a bit.

Anon

this is a question on how to send parameters to the server, so a cookie wouldn't help much at first. initially the data would still have to be sent to the server before the cookie could be set.

[deleted]

Are you seriously suggesting to write a piece of javascript that writes all the url parameters as cookies before you click a link? How would you get rid of 'old' data fromthe previous click? What would you do it the client has javascript disabled? What would you do if the client has cookies disabled?