Able to validate the submissions through API to verify its authenticity

  • Profile Image
    ecsc
    Asked on September 26, 2017 at 12:32 PM

    Greatly appreciate the clarification. Unfortunately the hidden field approach won't work since it can be easily spoofed by the client, but I will find another way.

    As a feature request, offering an API method to validate the event_id or otherwise sign the submission so it can be verified as authentic (not POSTed maliciously) would be extremely useful.

    Thanks for the assistance!

  • Profile Image
    Marvih
    Answered on September 26, 2017 at 01:17 PM

    We have now sent this to our developers as a feature request. We will reply in this thread for updates.


    Thanks