tags:

views:

32

answers:

2
Q: 

URL with unprintable characters

What are some of the ways a url can be displayed in a browser control within a desktop and not allowing users to be able to get the url and enter it into a browser. Basically anyone who has the desktop app gets the app which the url points to for free but want to prevent users from using the url outside the context of the desktop app.

Is using unprintable characters in the url an option? Or will that cause bigger headaches in the urls parsing in the browser and the server? The solution doesn't have to be totally foolproof as long as the average Joe cannot get to it.

+2  A: 

If someone getting ahold of the URL undermines the security of your entire application you have a problem elsewhere. Perhaps check upon rendering of the page if the user is allowed to see it or not?

Robert  2010-08-26 01:53:21
+1  A: 

Can you add some kind of custom HTTP headers through the browser control? Or check the user-agent header that already gets sent by the browser control...either of those may allow your server-side code to render or not render the page.

joelt  2010-08-26 01:55:28
Http headers can still be seen using something like Live Http headers, right.
HeretoLearn  2010-08-26 02:05:34
Absolutely. This definitely falls under the "not foolproof" category, but I'd also say beyond the average Joe.
joelt  2010-08-26 11:54:45

related questions

Create query parameters in javascript
ASP.NET MVC: Making routes/URLs IIS6 and IIS7-friendly
Relative urls for Javascript files
How to play a sound in Actionscript 3 that is not in the same directory as the SWF?
Sending values through links (html)
PHP: GET-data automatically being declared as variables
How can I set a timeout against a BufferedReader based upon a URLConnection in Java?
Getting a full list of the URLS in a rails application
Is it the filename or the whole URL used as a key in browser caches?
How do I register a custom URL protocol in Windows?
getting java exception: java.net.MalformedURLException: no protocol
Why do some websites add "Slugs" to the end of URLs?
Friendly URLs for ASP.NET
How to generate urls in django
square brackets in URLs
Does new URL(...).openConnection() necessarily imply a POST?
How do I generate a friendly URL in Symfony PHP?
Getting parts of a URL (Regex)
.NET - Get protocol, host, and port
how to get locale information on a GWT application
How do I convert a file path to a URL in ASP.NET
Can I generate ASP.NET MVC routes from a Sitemap?
URL without ID
ASP.NET URL Rewriting
Modify Address Bar URL in AJAX App to Match Current State