I’m using an approach but I don’t know if it’s wrong. When I connect

Question

0

Editorial Team

Asked: June 13, 20262026-06-13T11:26:58+00:00 2026-06-13T11:26:58+00:00

I’m using an approach but I don’t know if it’s wrong. When I connect

0

I’m using an approach but I don’t know if it’s wrong.

When I connect to the database in my website, the ResultSet will return the “Username” and the “UserId”.

while(rset.next()) {
//I place the Username inside a DIV, which is visible
//I Place the UserId inside another Div, which is not visible
}

I place the UserId because I need to grab them later for jquery and Ajax requests, when I view the source code, those UserIds are visible in the source code.

Means anyone can know the id of the listed users, or any other thing that has an id, does this weaken the website’s security?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-13T11:26:59+00:00

Editorial Team

2026-06-13T11:26:59+00:00Added an answer on June 13, 2026 at 11:26 am

As long as that information doesn’t help an attacker to get:

Access to your server/database
Access to a different user’s account
Sensitive information about your users

Then it is okay to put it “publicly”. For example, here on Stack Overflow, my user ID is 871050, it won’t help you achieve either of the goals listed above, so it’s fine for you to see it.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m using an approach but I don’t know if it’s wrong. When I connect

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply