When calling the AJAX call, the call request and response can see on console by using the firebug. This is major security issue. How can we hide the response(data) from the console?
Is there any option?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
When calling the AJAX call, the call request and response can see on console by using the firebug. This is major security issue. How can we hide the response(data) from the console?
Is there any option?
The fact that the data is arrived in the client means client has the authority to read and do whatever it wants with it. Now if that data is a security risk, then it should never be sent to the client in the first place.
If you are worried that someone other than the client might see it then use HTTPS.
If you are worried that people can see it in the firebug, well then that data is not supposed to be seen by client. Hiding firebug is only making it harder, not impossible. You may always use Fiddler to see HTTP content or even wireshark to see the packets.