+ 1
MVC5 login
I am developing MVC5 asp.net web app and I created a login page and it works perfectly fine. But the problem is someone can edit the address bar like this ( /home/administrator) and login without getting authenticated. What should I do to prevent this. Thanks.
1 Odpowiedź
0
Miki Yas
Yes it is possible people can change URL but there must be a mapping of URL in code so there you can verify if you didn't get valid mapping then you can throw a error page.