Accessing client side information

Question

0.00/5 (No votes)

See more:

In my application i want to implement payment gate way

Description:

User has to enter required information. and click on payment, then it should redirect to the payment gateway. Once it has been done again It should redirect to my page.

Problem: Before payment gateway what user entered, that information I have to use after payment confirmation (Operation has to done at client side only).

for this what you can suggest.

I am using Coockies (But it is less Security )

Thanks

Posted 19-Dec-11 20:44pm

Sridhar Patnayak

Updated 19-Dec-11 20:45pm

v2

Add a Solution

3 solutions

Solution 2

Cookies are client side statemanagment and less secure compared to server side state managment.
Better to go with SESSION veariable rather than cookies.
cookies can be disabled in browser settings.
Fast, Scalable, and Secure Session State Management for Your Web Applications[^]

Posted 19-Dec-11 21:00pm

koolprasad2003

Comments

Sridhar Patnayak 20-Dec-11 4:33am

Thanks for providing informative link

Solution 3

If you are worried about security (as you rightly should be), you should ensure that you use HTTPS and set the secured flag which ensures that your cookie will be encrypted.

I would suggest that you read this[^] paper to get a better understanding of cookie security.

Beyond that, I would go with Griff's suggestion of using a combination of Session, Cookie and Database to store the information in a secured fashion. If you use the database, make sure that you are storing sensitive information using encryption.

Posted 19-Dec-11 21:36pm

Pete O'Hanlon

Comments

Sridhar Patnayak 20-Dec-11 4:31am

Thanks for guiding me, The paper on Secure Coockie protocol is very useful

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

OriginalGriff · Accepted Answer · 2011-12-19T20:59:00

Solution 1

You have three basic ways to do this:

1) Cookies
2) Session variables
3) Database.

All three of these can contain encrypted information, and there is no reason why you can't use a combination of two or three of these to increase security still further.

Posted 19-Dec-11 20:59pm

OriginalGriff

Comments

Sridhar Patnayak 20-Dec-11 4:34am

Thanks for guiding me