[Date Prev][Date Next][Thread Prev][Thread Next][Interchange by date ][Interchange by thread ]

[ic] Setting order discount using JavaScript

Subject: [ic] Setting order discount using JavaScript
From: interchange-users@interchange.redhat.com (Stefan Hornburg Racke
Date: Mon May 13 09:30:19 2002
In-reply-to: <Pine.WNT.4.43.0205130802430.2836-100000@hooch>
References: <Pine.WNT.4.43.0205130802430.2836-100000@hooch>

Scott Kennedy <scott@custweb.com> writes:

> On Mon, 13 May 2002 cfm@maine.com wrote:
> 
> |On Sun, May 12, 2002 at 10:19:49PM -0500, Scott Kennedy wrote:
> |> I'm trying to set a discount for the entire order using a combination of
> |> JavaScript and Perl.  The code is on the checkout page which may be found at,
> |>
> |>     http://neatway.com/cgi-bin/altchoice/index.html
> |>
> |
> |Be careful that a visitor cannot alter that javascript and post the
> |page with his own discount.  That's a pretty common hack to many
> |carts that carry pricing in the page.
> 
> Good point.  Anything I can do to help prevent this?

Ignore the price given by the CGI parameters and calculate it on the
server side again.

Ciao
        Racke

-- 
Think of it !

For projects and other business stuff please refer to COBOLT NetServices
(URL: http://www.cobolt.net; Email: info@cobolt.net; Phone: 0041-1-3884400)

References:
- [ic] Setting order discount using JavaScript
  - From: interchange-users@interchange.redhat.com (Scott Kennedy)

Prev by Date: [ic] Setting order discount using JavaScript
Next by Date: [ic] RedHat 7.3 with Interchange
Previous by thread: [ic] Setting order discount using JavaScript
Next by thread: [ic] Setting order discount using JavaScript
Index(es):
- Date
- Thread