PDA

View Full Version : [CLOSED] Securing Ajax store call



MTSI
Feb 17, 2014, 5:33 AM
Do we have any options to secure the stores so that this ajax calls are made only through application? I have provided a sample call in the below code.


.Store(store => store.Add(Html.X().Store()

.Proxy(proxy => proxy.Add(Html.X().AjaxProxy()
.Url("~/AjaxData/GetAccountRange/")
.Reader(reader => reader.Add(Html.X().JsonReader()
.Root("data")
))
))
.Parameters(ps =>
ps.Add(new StoreParameter("filterText", "App['AccountName'].getValue()", ParameterMode.Raw))
)

Daniil
Feb 17, 2014, 7:48 AM
Hi @MTSI,

AJAX can make requests in the same domain/application only. So, a AjaxProxy uses the standard AJAX and it won't make any cross domain/application requests. So, we are not sure what you are asking. Please clarify.

To make cross-domain request a special thing should be used. For example, in the context of the Ext.NET Store, there is a special <ext:JsonPProxy>.