locked
iframe QueryString encode RRS feed

  • Question

  • User1310055179 posted

    Is there a way to encode the query string in an iframe src, so it won't be seen in view source?

    Tuesday, September 4, 2018 7:46 AM

All replies

  • User1724605321 posted

    Hi qsoft ,

    AFAIK, you can't . You can use javascript to set src attribute of iframe so that it will not be visible in iframe url in page source , but you can still see the url in javascript source . 

    Best Regards,

    Nan Yu

    Wednesday, September 5, 2018 6:21 AM
  • User753101303 posted

    Hi,

    Or the parameter could be encrypted maybe (and decrypted by your target page). Make 100% sure about what happens if a user can see this value and which action you are trying to prevent. Sometimes it happens that a sensitive value is sent client side while not used at all but just posted back to the server in which case you may have alternate design.

    Wednesday, September 5, 2018 6:51 AM