If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

ASP.net MVC 2 Security Considerations

John_Mc · 2010-11-05 17:38:48

Hi, I've just finishing working on an MVC 2 application and I want to ensure that it's secure. The Datalayer uses Linq-to-sql so there's no dynamically created SQL. I realise that all user input should be treated as dangerous, but how should I handle this with MVC? If I have data annotations in my models, client side…

05-11-2010 5:38pm

#1

John_Mc

Registered Users, Registered Users 2 Posts: 2,793 ✭✭✭

Join Date: May 2005

Posts: 2518

Hi,

I've just finishing working on an MVC 2 application and I want to ensure that it's secure. The Datalayer uses Linq-to-sql so there's no dynamically created SQL.

I realise that all user input should be treated as dangerous, but how should I handle this with MVC?

If I have data annotations in my models, client side validation and the forms are updated into the model (thereby conforming to the annotations), is this enough?

I look forward to your suggestions

0