|
Well let's think about this. Hackers can only monitor activity during the transmission of data, so Javascript is safe. It's the users responsibility to keep their computer clean. Security is only as safe as your ssl certificate, and the level of encryption your using.
In the long run, validating credit card information is not worth it. Just make sure they enter their name, card number and whatever else you need to process a AUTH_ONLY or AUTH_CAPTURE. Validating card information will be the least of your problems during checkout.
For you hard card card processors out there
Years of experience at this has lead me to think that too much validation confuses people when entering card data, and you will get a phone call for help, or the validation may result in a false flag. Worse case, your error message will be misunderstood.
|
|
|
|
|
Excellent answer, if you dont mind which country you are from? - Is it Democratic, socialistic, secularistic, independent state of India - this is what the description of india from indian constitution.
Thanks & Regards,
Abdul Aleem Mohammad
St Louis MO - USA
|
|
|
|
|
I'm going to private message that answer to you.
I wasted too much time on card validation in the past, and should of focused on the User Interface in whole. Card Validation is no good if you can't get them to fill in the data in the first place. If you blast too many messages, then they get frustrated, and give up, resulting in lost sales.
You have to make the customer feel like a rock star, so when they check out, they think they are computer king. Of course, we simply made it super easy for them, but they don't need to know that.
All the information has to be there, 100% accurate. If they see a mistake, they will leave real quick.
You have to gain the trust of the customer with your user interface, and it should be very clear and organized.
Now you can write some Jquery to help the process out, a little reminder here, a arrow there, but real gentle like.
So work on your user interface first, test it on people, then add validation one at a time. Of course get your main code working as well, then keep polishing the product until it's silky smooth and easy to use.
For validating, just paint the border of the textbox a light red, so it can be noticed, but is not shouting at them. Look at Twitter, or the Guardian Newspaper, where you can leave a comment. They are great examples of validation.
|
|
|
|
|
Superb, thank you very much.
Thanks & Regards,
Abdul Aleem Mohammad
St Louis MO - USA
|
|
|
|
|
I'm having an issue with post backs that I can't seem to figure out.
I have a user control and a web form. The user control contains a <asp:table> and it is populated with data.
So on the web form code behind it calls the user control method "PopulateUsers" which adds TableRows to the <asp:table>. Also on the web form it has a save button.
Now when the save button is clicked, it posts back and then my asp:Table is blank (because I have it not populating on a post back).
How can I maintain the current data during a postback that is in a user control? I have tried enabling view state on the controls, and all the pages with no luck.
|
|
|
|
|
If you are creating a table dynamically then you will need to handle the viewstate yourself.
Here is a link that will show you a number of articles on the subject: http://lmgtfy.com/?q=dynamic+controls+viewstate+asp.net[^]
"If you think it's expensive to hire a professional to do the job, wait until you hire an amateur." Red Adair.
nils illegitimus carborundum
me, me, me
|
|
|
|
|
I'm have a new application with a LoginView control, where the AnonymousTemplate holds a Login control. When the Web application is ran the login screen displays, once the Login button is clicked following error is displayed: "'WebForm_PostBackOptions' is undefined"
I'm using SQL Server 2008, .NET Framework 3.5 and IIS v5.1. Could anyone point me in the right direction please? This is a new Web application, not first created using .NET Framework 1.1.
Thanks
|
|
|
|
|
|
Hi Sandeep,
Thank you for your reply. I have read through each of the links you provided over the last few days and had no luck in resolving the issue. My problem is that I am running the application from my local machine and so the required data wasn't being passed through Fiddler, even when using the machineName or 127.0.0.1.
Today I gave it another shot using FireFox and was able to see the data in Fiddler. The URL reads:
/WebResource.axd?d=xxx
and when I select Inspector --> WebView the following is displayed:
Server Error in '/WebSite2' Application.
--------------------------------------------------------------------------------
The resource cannot be found.
Description: HTTP 404. The resource you are looking for (or one of its dependencies) could have been removed, had its name changed, or is temporarily unavailable. Please review the following URL and make sure that it is spelled correctly.
Requested URL: /WebSite2/WebResource.axd
--------------------------------------------------------------------------------
Version Information: Microsoft .NET Framework Version:2.0.50727.3625; ASP.NET Version:2.0.50727.3634
From this I assume there should be a WebResource.axd file created when the WebApplication was first implemented. Is this correct?
If so how come Visual Studio didn't create this file and how do I go about creating it so the application with function correctly?
Thank you
|
|
|
|
|
Just an update.
I created an empty WebResource.axd file in the WebSite2 folder but this had no effect and the same error messages were received in Fiddler.
Thank you for your time.
|
|
|
|
|
Hi,
I'm so happy to let you know that I resolved the problem by cleaning up my .NET framework installs. First I removed .NET framework 1.1 (not sure if this is recomended or not but I would have tried anything at that point), I then went through .NET framework 2.0, 3.5, 4.0 and ran the change/repair. My IIS still points to .NET framework 2.0 so the change/repair on this framework may have been the solution for me, however, I only tested once I repaired all three installs.
Thank you
|
|
|
|
|
Good to know that it's resolved now.
|
|
|
|
|
hi guys answer my questions
|
|
|
|
|
Nice attitude!! You must have a lot of close friends...
Got some info in a few seconds using google.
Look here
|
|
|
|
|
42. You're welcome.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
|
Search on the internet. You will find some articles on forums.
|
|
|
|
|
hi , i dont know the idea of creating forum in web site can any one help me
Alagushankar
|
|
|
|
|
There are so many free forums out there. Start by seeing if one will work for you. If not, pick up a book and start reading.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
|
|
I am developing a web application that uses Forms authentication however it has a few web service methods so that I can script some maintenance tasks and allow other administrative functions. Is there an easy way to change a sub folder to use Windows authentication instead of Forms without multiple web applications or web.config files. I tried to override it using the <location path="wsapi"> option but am getting "configuration section not allowed to be set below application." when looking in IIS. Any thoughts on how to use both methods without deploying a separate app?
The network is down...let's go get bagels.
|
|
|
|
|
I think you can use multiple web.config files,in a web app. Just make a new one and drop it in the folder. The web.config will work on all sub folders beneath that folder.
|
|
|
|
|
If you don't want to add extra web.config files in the subfolder, you can add a <location> section in your main web.config.
<location path="Restricted">
<system.web>
<authorization>
<stuff>
</authorization>
<authentication>
<more stuff>
</authentication>
</system.web>
</location>
|
|
|
|
|
Is there perhaps a machine or web.config setting that could be preventing it? IIS throws up errors when I am using the <location> tag.
The network is down...let's go get bagels.
|
|
|
|