Hi All,
As part of the current requirement am working, we are passing/maintaining the credentials as site settings of the portal (which we further have to use to call external service and validate the user entered details.). As 'View Source' on the portal form is revealing those secret client id and password, we would like to understand is there any way we can hid/mask/encode these values to make sure of 'View source' doesn't bother us to lose these confidential information to the user.
Any thought be useful, Please share.
Thanks !.
Regards,
Shravana Jyothi
Hi Jyothi,
Based on my understanding there is no way to restrict the end user for viewing the source. There are few work arounds like disabling the right-click (or) disabling the dev-tool bar. But those cannot prevent it from doing so. Once the data is on client side.. if end user has basic understanding of webpage debugging he can get that.
Coming to your problem:
try passing the values back to plugin, validate these data on the server side and save the response in another field. from portal keep on checking the last response field for an regular interval.
Let me know if you find any better approach.
Thanks!
This is weird. Getting the value of the site setting happens server side. You need to provide the name of the setting in your code (liquid of Javascript) and on the server side, it will take care of getting the value of that setting without exposing it in the html. Can you help me understand how are you using the sitesetting on the portal pages?
Thanks
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
André Arnaud de Cal... 291,253 Super User 2024 Season 2
Martin Dráb 230,188 Most Valuable Professional
nmaenpaa 101,156