|
Posted by Jasen Betts on 02/06/06 21:47
On 2006-02-06, Sean Barton <barton.sean@gmail.com> wrote:
> to make the information appear in a standard form you need to put
> everything in a table. header is simply a way of saying do your titles
> here. ie:
>
> Table
> Name Sex Age Action
> ---------------------------------------------------------
> bob M 20 Delete
>
>
> the rows above the data is the header.
>
> also i have one concern. your not storing age in a database are you??
> be wary that age is a number and needs to be updated every year. what
> you need to be storing is date of birth and working out the age from
> there if you want to. it saves a lot of database errors in the future.
>
> as my peers suggested validate everything. there is a variable in
> $_SERVER called 'HTTP_REFERER' i think it may help.
don't trust it. it's easy to fake.
> validate who is calling the page and nobody
> but the page you want can access the delete
> function.
HTTP_AUTH_USER
HTTP_AUTH_PASSWORD
> dont delete anything from the database. modify the table while it is
> still small. add in a checkbox field called active and set default to
> yes. then modify your query for the page you want so. select * from
> people where active=yes;
--
Bye.
Jasen
Navigation:
[Reply to this message]
|