Share 10 AJAX development standards and recommend AJAX learners ' Collections!
1. Before and after the end to do a good job of security checks
Can not rely on the front-end to do security verification work, the back end must have a filtration mechanism to test the data from the front. Because Ajax will also receive data from the backend, the information should be distrusted and must be checked.
2. Try to transmit data in HTTP POST method
Using the Get method makes it easy for the observant to obtain information, although post is not foolproof, but it is safer than getting at least.
3. Do not invoke JSON objects directly with the Eval function
JSON is a JavaScript object name data format, upload from the back to the AJAX program, you must use the Eval function to convert it from the string into an object, you must first check the data has illegal characters in order to prevent illegal programs to enable.
4. Limit the HTML syntax available to the user
Many Ajax sites allow users to use HTML syntax in their messages, and some specific syntax should be strictly restricted, such as
<strong> or!--syntax, which invalidates the code that is placed behind it.</strong></p></strong> </plaintext></p> <p><p><strong>5. Use JavaScript syntax for page pages that are not allowed to leave messages</strong><br>Although at first blush, it did happen on some tribal Gopping platforms, which opened the door to XSS attacks.</p></p> <p><p><strong>6. Using the AJAX framework, you must pay attention to security issues</strong><br>As hackers use JavaScript to attack with each passing day, when Web developers use the AJAX framework, we must pay attention to whether the framework itself to some specific methods of prevention and control behavior.</p></p> <p><p><strong>7. Let users know where they are</strong><br>When Ajax loads a large amount of data, it sometimes gives the user the illusion that it is not sure if the button just pressed has any effect. Therefore, the developer must design the appropriate hints to let the user understand the current program implementation status.</p></p> <p><p><strong>8. Maintain a small amount of transmission</strong><br>The flexibility of Ajax is to change the amount of local data dynamically, so small amounts of data transfer can achieve maximum benefit. If a large table is to be changed through the operation of the DOM, it is better to operate from the backend program and the database.</p></p> <p><p><strong>9. Attention to ease of use and content balance</strong><br>Ajax, while it makes browsing easy for users, can cause the search engine to fail to index data if all content is generated through Ajax. So the content-related part needs to be used with care Ajax.</p></p> <p><p><strong>10. Implementation of the graceful demotion principle</strong><br>If the site is not comprehensive Ajax technology, but only for local increase interactivity, then must consider the user does not support JavaScript, try to do not use these features, under the premise that they can also normal browsing the site.<br></p></p> <br> <br>