Jun 21, 2017, 7:50 AM
[CLOSED] submitDirectEventConfig exposing username and password in developer tools
Hello,
I have a login window that contains Ext.net textfields username and password and a submit button. when clicking submit button it is appeared in the developer tools the submitDirectEventConfig and the username and password are exposed to any user that opens the developer tools submitDirectEventConfig:{"config":{"extraParams":{ "username":"splvrd","password":"1234","Language":" ar"}}}.
in Addiion to that, these two textfields are exposed also in the FormData section in the developer tools under _EVENTARGUMENT section.
__EVENTARGUMENT:-|public|VerifyLogin
txtUsername:splvrd
txtPassword:1234
LanguageRadioGroup:ar
How to encrypt or not expose these data. please check screenshots attached.
thank you.
I have a login window that contains Ext.net textfields username and password and a submit button. when clicking submit button it is appeared in the developer tools the submitDirectEventConfig and the username and password are exposed to any user that opens the developer tools submitDirectEventConfig:{"config":{"extraParams":{ "username":"splvrd","password":"1234","Language":" ar"}}}.
in Addiion to that, these two textfields are exposed also in the FormData section in the developer tools under _EVENTARGUMENT section.
__EVENTARGUMENT:-|public|VerifyLogin
txtUsername:splvrd
txtPassword:1234
LanguageRadioGroup:ar
How to encrypt or not expose these data. please check screenshots attached.
thank you.
Last edited by fabricio.murta; Jul 14, 2017 at 4:21 PM.
Reason: no feedback from the user in 7+ days