I am trying to hide my JavaScript source. The method I chose was to
keep all the important source in a password protected folder, and then
use a SRC="folder/script.js" to include it in my code. This way, the
script will run, but the user will be unable to view the included
code. Or so I think :).
I have tried this method, and it seems to work. However, I would like
to know if you can see any problems with this. For instance, can you
think of a way to bypass this and get at script.js? Can you foresee
any problems that would arise as a result of keeping scripts behind
password protected folders? Any other security concerns?
I want to make a page on a [URL] site (meaning no SS scripting) that is password protected. The problem is I have no idea how to make it to where someone can't see the password. The best I could think of would be:
if (password=="p455burrito") { window.open(/*blabla*/); }
But then someone could easily check the source code (even if I put the variable in another file or anything, it could still be seen). So someone redirected me to the Bravenet password protection, but I don't know how to make it redirect to a page that is protected by the password. If I put the password code on the page and log in, it redirects me where it's supposed to go, but I can still just go to the page myself and it's not protected.
How would I do this with just what [URL] allows?
I was checking out the more advanced Javascript tutorials and was thinking that cookies would be appropriate for this situation.
Also, I did search and I found things like this: [URL]
Which are easy to get through if you know how to look through the source code.
1. place name in heading tag provided2. locate script tag and create a cookie named password and assign to its value the user's entry into the pWord text box.3. test the file by opening the file and entering the password "hello" and see if you are able to enter the password protected page. test using the password "goodbye" and you should not be able to enter the page.Someone please help asap, I am including an attachment with a zip file with the page I am working on and the follow up page.
I've just started my venture into HTML5 localStorage. I now have a javascript my server sends to those who visit my ip address. I store all their data using localStorage. I have a few security questions regarding the HTML5 localStorage situation:
1. Can a script that did not create the local storage retrieve/modify the localStorage of another script just by guessing the key maliciously or unintentionally?
2. Can another script use the clear() method to remove my scripts data? Edit: I just tried this myself. And, yes, I deleted my data, all of it with clear() using a different script. Is there any way to prevent this? Is it only my end that will be able to do it or could I load a script from a site has a hidden clear() method and destory all other javascript apps data?
3. If item (2) is true, any ideas on how to protect my scripts data for the user from the clear method?
4. if item (2) is false, cool, my first idea is to create a uniqnue string random string and ask the user to creat a password to encrpt that string and just use that string with enumeration added to it for the keys.
5. Does anyone know where localData is stored? Is it encrypted already, in plain text, in well-known or hidden location?
I'm working on a project that requires files to be password protected on a UNIX based site. The people that own the web site want to be able to change the password every so often. Unfortunately, I have restricted access only to FTP so I really can't log in to any kind of Administrative Console or Admin Panel and see if there are folders that can be password protected and then have passwords changed on them. The people I'm contracted to work on the site for aren't the most computer savvy people though....so..my question is:
Is there a user friendly way of password protecting a folder on a UNIX based site?
function jsFileManager(mode) { this.mode = mode; }
If there a way to make jsFileManager.mode property as final protected. Other words, it can be set only once diring the objects initialization and it is accessible only to the inner methods of jsFileManager conctructor?
I'm having trouble getting two password boxes to work on the same page, which I created using the JavaScript Kit Encrypted Password Generator [URL].
I've used the code that this generator produces, with some modifications as given by cheesebagpipe [URL]. These changes enable the user to press the keyboard's enter key to submit the password (as an alternative to clicking the submit button), and will also refocus the text box and select the text in it if the user enters the wrong password.
The code works fine on pages with just one box (e.g. [URL]), but what changes are needed to make two work on the same page? (I'm new to web design and clueless when it comes to JavaScript, which I know isn't the most secure method of password protection, but will do for now).
At the moment, on pages with two boxes (e.g. [URL]), neither of the boxes work; this appears in the address bar instead: [URL] ('help!'=whatever has been entered in the text box).
i'd like to find a javascript that can specify the foldername a page finds itself within.
i'm not a Javascript expert, but i know this can be done by saving the full URL into a string, then using a decrementing array to locate the foldername within the URL.
is there a better way in javascript? does anyone know where i can find a currently working script i might look at?
Originally I had the following code. What it does is for a user to type the folder name of their choice and then after clicking submit a window will pop open and they will be taken to "C:folder" (assuming the user typed "folder" and such a folder existed). Here is the code in case I wasn't clear.
Most of the browsers has a feature that prompts the user to save the username or password when filling a form.
I just want to disable this feature. Can i disable this feature using Javascript?
Because there are some users that will not read on the message or information on the pop window that prompts them to save the username and password. I know it can be disabled manually through the browser's preferences.
i have created one simple login form with 5 fields namely username,email id,password,retype password and phone no.i have created alert message for each function,so that when there is an error it displays alert message..now i have to replace all alert messages with inline validation(displays errors beside textbox).
below is the code for simple login form having fields username,email id,password,retype password and phone no. i have done inline validation forcheckName() .i am not getting for the other fields can u tell me how to do it..
This is a secure solution for password protection with JavaScript. It works by encrypting the password and the content. Nothing is revealed in the source code, and it cannot be beaten by disabling JavaScript.
The download contains three files:
Protect Content.html lets you generate your own protected content.
Demo.html is a protected document, and as long as it remains unbroken, it's your proof that this software works. You can also use it as a template for your own protected pages.
Demo, with hint.html is another protected document that tells you the password. This is meant to show that the first demo is not a trick or a fake.
I want to be able to automatically filter certain characters a user is typing in either an input field or a textara and automatically convert them to it's equivalent html entity. I've looked at .keypress, which will give me the character they typed, but I have no idea where in the box they have typed it.
I've recently been following the object-oriented techiques discussed here and have been testing them for use in a web application. There is problem that I'd like to discuss with you experts.
I would like to produce Javascript classes that can be "subclassed" with certain behaviors defined at subclass time. There are plenty of ways to do this through prototyping and other techniques, but these behaviors need to be static and protected. By protected this means that they can be overridden (or reassigned) in subclasses, and privileged subclass methods can access them, but callers external to the class cannot.
I've been attempting to define a factory function that transfers its parameters to an anonymous object while defining the constructor in a -with- block. (This is what I'm loosely referring to as "subclassing" - it's really object composition.) This works, but not for externally-defined functions. They can't see the protected static members....
Some time back we assembled an Explore-type menu system (tree of folders) for a client site which has grown to be a pivotal function of the site in that deep navigation into the South African Education Law all hangs off this structure.
From our side, it has all worked perfectly and the client is about to launch the site, but claims that he has continual problems with some folders opening to pages where files cannot be found, and the menu system then locks up. Fine.... accept that. Except that we cannot replicate the problem. On several machines we have opened the tree structure hundreds of times, and with never a single problem.
The first indication the client has of a problem is when the site loads, and some of the "plus signs" (used to indicate that there are underlying folders) do not show. Just the red background. But if you mouse over where the "plus sign" should be - then the "hand icon" appears and the correct link is shown in the URL box. But if you click to the link it shows "done" but the link won't load. Reverse back to the menus and the buttons now no longer work and most don't display.
This seems to be happening only within the client's site which is a simple Windows Network connecting through a broadband DSL router to the internet. He claims that on three different office machines he can replicate the problem.
The problem is intermittant and will often work fine for an extended session. next visit to the site and the problems will be back.
Could this be a caching issue.? Or older Java engines.? Maybe we should be using a more universal javascripting routine. Sadly our in-house java skills are low and we've just hacked away at public scrips to get this working.....
i'm supposed to use javascript to search through a folder that contains many excel files. the search term is obtained from a front end html form, javascript gets that value, search every single excel file in the folder and see which file has a cell that matches the search terms.
I currently know (sort of) how to search through 1 file. but how do I search through many files? and from what i see from the searching of 1 file, it takes a few seconds to open and close the excel file (located on a network drive). which means it will take a fair bit of time to cycle through 97 excel files. Is there like any searching algorithm to speed up the process?
