tags:

views:

32

answers:

3
+1  Q: 

Add logic to a form when Javascript is disabled

I'd like my form to include a certain value if the quantity is equal to 1 (via a text box).

I've managed to show what the total cost is using JavaScript and I could submit it with this value but I'm worried that when JavaScript is turned off the user will be able to submit the form without the extra fee being added. Therefor escaping the fee.

<form>
    <label>Qunatity</label>
    <input type="text" name="qyt" />
    <input type="text" name="fee" value="250" />

    <div class="total">[whatever the total is]</div>

    <input type="submit" value="submit" />
</form>

Is there a way I can submit this form so that it submits 250 only if a quantity of 1 is added to the form? I'd like to avoid using a select input.

Will I need to split my form out into two stages to achieve this?

+3  A: 

You need to check your logic in server-side code.

Most people have Javascript enabled, so you should do it in Javascript to provide a better experience, but you must always reproduce the logic on the server.

SLaks  2010-02-25 14:38:47
Indeed; relying exclusively on JavaScript for validation is technically a security vulnerability. Take note that any script kid can still open up TelNet and start manually typing out HTTP, circumventing JS validation. JavaScript can add convenience and usability to your site, but don't rely on it.
LeguRi  2010-02-25 14:45:57
Thanks. I was worried about relying on JavaScript because of these very reasons. How can achieve this logic with a text input field though? Will I need to submit the form first before I can work out the total?
Sevenupcan  2010-02-25 14:54:44
You can still work out the total in JavaScript and show it to the user, just don't submit that total. Submit the quantity and fee values, then calculate the total again server-side.
Mark B  2010-02-25 15:09:22
A: 

The best/safest way to handle this would be to do your total calculation on the server side. That way the data you store will always be correct.

Mark B  2010-02-25 14:39:30
+1  A: 

If you need to validate your input without JavaScript, have a server-side component (PHP?) to do the job and return the same form with an error message if no quantity was given. That way you don't have to split your form into two steps.

Select0r  2010-02-25 14:40:37

related questions

Infopath 2007 - Emailed forms not rendering correctly
What can prevent an MS Access 2000 form from closing?
Form library
Trigger update on DataTable bound to DataGridView
What's a clean/simple way to ensure the security of a page?
How to best merge information, at a server, into a "form", a PDF being generated as the final output
In HTML, what should happen to a selected, disabled option element?
What's the state of play with "Visual Inheritance"
ASP.NET MVC Preview 4 - Stop Url.RouteUrl() etc. using existing parameters
HTTP POST question - I'm stuck
InfoPath 2003 and the xs:any type
Retrieving HTTP status code from loaded iframe with Javascript
Data model for a extensible web form
.Net Compact Framework scrollbars - horizontal always show when vertical shows
MVC - where to implement form validation (server-side)?
Offline forms
MVC .Net - The best way to write a form?
Windows Forms Threading and Events - ListBox updates promptly but progressbar experiences huge delay
What is the best way to upload a file via an HTTP POST with a web form?
Delphi MDI Application and the titlebar of the MDI Children
Use the routing engine for form submissions in ASP.NET MVC Preview 4
How Do I Post and then redirect to an external URL from ASP.Net?
Is a "Confirm Email" input good practice when user changes email address?
WinForms ComboBox data binding gotcha
How do I access a remote form in php?