我有两个ASP页面 payment.asp: 客户填写付款/卡详细信息(预先填写详细信息 提交的详细信息无效,用户必须重新填写详细信息) confirmorder.asp: 显示隐藏字段中的信用卡详细信息以及订单详情 来自数据库 我的问题是 1)如果payment.asp提交到confirmorder.asp,那么 1.1)我可以获得confirmorder.asp来显示隐藏字段中的卡片详细信息 但是 1.2)但是如果卡片详细信息无效我怎么能返回用户到payment.asp ,卡片详细信息预先填充? 1.2.1)如果我是Response.Redirect,那么没有任何内容可以预先设置(除非我把 详细信息在查询字符串中,出于安全原因,这不是我想要的) 2)如果payment.asp提交到payment.asp那么 2.1)我可以获得页面来预先填写payment.asp上的详细信息,如果c ard详细信息 无效但是 2.2)我如何指导用户确认订单.asp返回payment.asp并预先填充 详细信息 1.2.2)如果我是Response.Redirect,则在Request.form中读取 无法填充隐藏字段!
I have two ASP pages payment.asp: For customers to fill in payment/card details (pre-populating details if details submitted were invalid and user had to re-fill in details) confirmorder.asp: Display the credit card details in hidden fields and also the order details from Database My question is 1) If payment.asp submit to confirmorder.asp, then 1.1) I could get confirmorder.asp to display card details in hidden fields BUT 1.2) But if card details are invalid how could I return user to payment.asp with card details prepopulated?? 1.2.1) If I Response.Redirect, nothing would be pre-popualting (unless I put in details in Query string, which is not what I wanted for security reasons) 2) If payment.asp submit to payment.asp then 2.1) I could get page to pre-populate details on payment.asp if card details are invalid BUT 2.2) How could I direct user to confirmorder.asp back to payment.asp with details pre-populated 1.2.2) If I Response.Redirect, hidden fields cannot be populated by reading in Request.form!
推荐答案我会尽量避免使用Session,但如果我要使用Session,会不会将会话数据保存在服务器的内存/ RAM中? " Patrick" < PA ** @ reply.newsgroup.msn>在消息中写道 news:eL ************** @ tk2msftngp13.phx.gbl ... I would try to avoid using Session, but if I were to use Session, would Session data be held in the server''s memory/RAM? "Patrick" <pa**@reply.newsgroup.msn> wrote in message news:eL**************@tk2msftngp13.phx.gbl... 我有两个ASP页面 payment.asp:客户填写付款/卡详细信息(如果提交的详细信息无效且用户必须重新填写详细信息,则预先填写详细信息) confirmorder.asp:显示隐藏字段中的信用卡详细信息以及来自数据库的订单详情 我的问题是 1)如果付款。 asp提交到confirmorder.asp,然后 1.1)我可以获得confirmorder.asp来显示隐藏字段中的卡片详细信息但是1.2)但是如果卡片细节无效,我怎么能让用户返回 payment.asp,卡片详细信息已预先填充? 1.2.1)如果我是Response.Redirect,则不会预先设置任何内容(除非我将放入查询字符串中的详细信息,这不是我想要什么安全原因) 2)如果payment.asp提交到payment.asp然后 2.1)我可以获取页面预先填充详细信息payment.asp如果卡详细信息无效但是2.2)我怎么能指示用户确认订单.asp回到payment.asp并预先填好详情 1.2.2)如果我是Response.Redirect,隐藏字段无法通过在Request.form中读取! I have two ASP pages payment.asp: For customers to fill in payment/card details (pre-populating details if details submitted were invalid and user had to re-fill in details) confirmorder.asp: Display the credit card details in hidden fields and also the order details from Database My question is 1) If payment.asp submit to confirmorder.asp, then 1.1) I could get confirmorder.asp to display card details in hidden fields BUT 1.2) But if card details are invalid how could I return user to payment.asp with card details prepopulated?? 1.2.1) If I Response.Redirect, nothing would be pre-popualting (unless I put in details in Query string, which is not what I wanted for security reasons) 2) If payment.asp submit to payment.asp then 2.1) I could get page to pre-populate details on payment.asp if card details are invalid BUT 2.2) How could I direct user to confirmorder.asp back to payment.asp with details pre-populated 1.2.2) If I Response.Redirect, hidden fields cannot be populated by reading in Request.form!
获取机密信息(信用卡)卡片)... 不要使用隐藏的字段。 不要使用查询字符串。 使用会话或数据库,它停留在服务器上,不会传递到 客户端。 当你重定向回第一页时,你可以简单地重新填充所有 必要的数据字段。 " Patrick" < PA ** @ reply.newsgroup.msn>在留言中写道 新闻:%2 **************** @ TK2MSFTNGP15.phx.gbl ... for confidential information (credit cards)... don''t use hidden fields. dont'' use querystring. use session or a db, it stays on the server, does not get passed to the client. also when you redirect back to the first page, you can simply repopulate all the necessary data fields. "Patrick" <pa**@reply.newsgroup.msn> wrote in message news:%2****************@TK2MSFTNGP15.phx.gbl... 我会尽量避免使用Session,但如果我要使用Session,那么会话数据会保存在服务器的内存/ RAM中吗? Patrick < PA ** @ reply.newsgroup.msn>在消息中写道新闻:eL ************** @ tk2msftngp13.phx.gbl ... I would try to avoid using Session, but if I were to use Session, would Session data be held in the server''s memory/RAM? "Patrick" <pa**@reply.newsgroup.msn> wrote in message news:eL**************@tk2msftngp13.phx.gbl... 我有两个ASP页面 payment.asp:为客户填写付款/卡详细信息(如果提交的详细信息无效且用户必须重新填写详细信息,则预先填写详细信息) confirmorder .asp:显示隐藏字段中的信用卡详细信息以及订单 I have two ASP pages payment.asp: For customers to fill in payment/card details (pre-populating details if details submitted were invalid and user had to re-fill in details) confirmorder.asp: Display the credit card details in hidden fields and also the order
详细信息
details
来自数据库 我的问题是 1)如果payment.asp提交到confirmorder.asp,那么 1.1)我可以获得confirmorder.asp来显示隐藏的字段中的卡片详细信息但是1.2)但是,如果卡片详细信息无效,我怎么能将用户返回 from Database My question is 1) If payment.asp submit to confirmorder.asp, then 1.1) I could get confirmorder.asp to display card details in hidden fields BUT 1.2) But if card details are invalid how could I return user topayment.asp
payment.asp
卡片详细信息预填充? 1.2.1)如果我的Response.Redirect什么都不会预先设置(除非我 with card details prepopulated?? 1.2.1) If I Response.Redirect, nothing would be pre-popualting (unless I在查询字符串中详细说明
put
,这不是我的意思安全性 in details in Query string, which is not what I wanted for security原因)
2)如果payment.asp提交到payment.asp那么 2.1)我可以获得预先的页面填写payment.asp上的详细信息如果卡 2) If payment.asp submit to payment.asp then 2.1) I could get page to pre-populate details on payment.asp if card详细信息
details
无效但是2.2)我怎么能指示用户确认订单.asp回到payment.asp用预先填充的详细信息 1.2.2)如果我在Response.Redirect中,隐藏字段不能填充 are invalid BUT 2.2) How could I direct user to confirmorder.asp back to payment.asp with details pre-populated 1.2.2) If I Response.Redirect, hidden fields cannot be populated by在Request.form中读取
reading
!
填充存储在Session *中*完全*不可妥协/不可攻击(甚至 $ b对于[admin]访问服务器的人来说,$ b? (Win2K上的IIS5.0服务器 Pro SP4)? " caulker" < WS ******* @ ucsd.edu>在消息中写道 news:%2 **************** @ TK2MSFTNGP10.phx.gbl ... Is stuffed stored in a Session *completely* uncompromisable/unhackable (even for someone with [admin] access to the server)? (A IIS5.0 Server on Win2K Pro SP4)? "caulker" <ws*******@ucsd.edu> wrote in message news:%2****************@TK2MSFTNGP10.phx.gbl... for confidential信息(信用卡)...... 不要使用隐藏字段。不要使用查询字符串。使用会话或数据库,它停留在服务器上,不会通过到了客户端。 当你重定向回到第一页时,你可以简单地重新填充所有必要的数据字段。 "帕特里克" < PA ** @ reply.newsgroup.msn>在消息中写道新闻:%2 **************** @ TK2MSFTNGP15.phx.gbl ... for confidential information (credit cards)... don''t use hidden fields. dont'' use querystring. use session or a db, it stays on the server, does not get passed to the client. also when you redirect back to the first page, you can simply repopulate all the necessary data fields. "Patrick" <pa**@reply.newsgroup.msn> wrote in message news:%2****************@TK2MSFTNGP15.phx.gbl... 我会尽量避免使用会话,但如果我使用Session,会话数据会保存在服务器的内存/ RAM中吗? Patrick < PA ** @ reply.newsgroup.msn>在消息中写道新闻:eL ************** @ tk2msftngp13.phx.gbl ... I would try to avoid using Session, but if I were to use Session, would Session data be held in the server''s memory/RAM? "Patrick" <pa**@reply.newsgroup.msn> wrote in message news:eL**************@tk2msftngp13.phx.gbl... 我有两个ASP页面 payment.asp:为客户填写付款/卡详细信息(预先填写详细信息如果提交的详细信息无效且用户必须重新填写详细信息) confirmorder .asp:显示隐藏字段中的信用卡详细信息以及订单 I have two ASP pages payment.asp: For customers to fill in payment/card details (pre-populating details if details submitted were invalid and user had to re-fill in details) confirmorder.asp: Display the credit card details in hidden fields and also the order
详细信息
details
来自数据库 我的问题是 1)如果payment.asp提交到confirmorder.asp,那么 1.1)我可以获得confirmorder.asp来显示隐藏的字段中的卡片详细信息但是1.2)但是,如果卡片详细信息无效,我怎么能将用户返回 from Database My question is 1) If payment.asp submit to confirmorder.asp, then 1.1) I could get confirmorder.asp to display card details in hidden fields BUT 1.2) But if card details are invalid how could I return user topayment.asp
payment.asp
卡片详细信息预填充? 1.2.1)如果我的Response.Redirect什么都不会预先设置(除非我 with card details prepopulated?? 1.2.1) If I Response.Redirect, nothing would be pre-popualting (unless I put 在查询字符串中的详细信息,这不是我想要的安全性 in details in Query string, which is not what I wanted for security原因)
2)如果payment.asp提交到payment.asp那么 2.1)我可以获取页面预先填充payment.asp上的详细信息如果卡 2) If payment.asp submit to payment.asp then 2.1) I could get page to pre-populate details on payment.asp if card详细信息
details
无效但是2.2)我怎么能指导用户确认订单.asp回到payment.asp are invalid BUT 2.2) How could I direct user to confirmorder.asp back to payment.asp
预先填好的详细信息 1.2.2)如果我有Response.Redirect,隐藏字段
with details pre-populated 1.2.2) If I Response.Redirect, hidden fields cannot be populated by
在Request.form中读取
reading
无法填充! in Request.form!
更多推荐
将字段从一个页面传递到另一个页面
发布评论