No validation ?
#29
-
|
If there is no validation for user inputs, even if it "feels" restricted by design of UI, it is very susceptible of hack. |
Beta Was this translation helpful? Give feedback.
Answered by
BetaHuhn
Mar 16, 2021
Replies: 1 comment 1 reply
-
|
There is no validation because this is only a frontend library. You have to (and should) validate the input on the server. Validating the input directly in this library would give a false sense of security as an attacker can send his own input directly to the server, bypassing this library entirely. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
agreed |
Beta Was this translation helpful? Give feedback.
Answer selected by
BetaHuhn
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There is no validation because this is only a frontend library. You have to (and should) validate the input on the server.
Validating the input directly in this library would give a false sense of security as an attacker can send his own input directly to the server, bypassing this library entirely.