-
ecscAsked on September 26, 2017 at 12:32 PM
Greatly appreciate the clarification. Unfortunately the hidden field approach won't work since it can be easily spoofed by the client, but I will find another way.
As a feature request, offering an API method to validate the event_id or otherwise sign the submission so it can be verified as authentic (not POSTed maliciously) would be extremely useful.
Thanks for the assistance!
-
MarvihReplied on September 26, 2017 at 1:17 PM
We have now sent this to our developers as a feature request. We will reply in this thread for updates.
Thanks