Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I am writing a phonegap application which I want to send ajax request and register users
with some parameters for ex: full name,email,password.
What would be the most secure way to build my PHP script to prevent other users from
flooding my DB with register requests?
There are some standard methods:
Hidden will only catch stupid robots, as they can usually tell that that’s what it is, but invisible is trickier if you do it with CSS and/or Javascript. Variations on this theme are also good, such as having a field with a timestamp in it, then comparing it to now (and denying if it’s too old/from the future), or using magic values in some manner.
$_SERVER['HTTP_REFERER']. If your registration page isn’t on your homepage, make it so they have to come from somewhere on your site.