URL Security

Hello, how do I prevent full addresses to be written on the user’s url bar? i.e. q=/modules/Markbook/markbook_edit_data.php&gibbonMarkbookColumnID=0000000002&gibbonCourseClassID=00000018&updateReturn=success0

James,

That is an interesting question, and one we have not fielded before. One approach could be to place your whole Gibbon install into an HTML iframe that fills the screen. Another could be to use permalinks, like WordPress does for some parts of the URL.

Can I ask why you are looking to do this? Security should not be improved, as even if I change the values in the URL, Gibbon will check I have access before displaying the values.

Cheers,

Ross

The thing is, if it writes the whole url remsembling the way folders have been arranged its easier for someone to know the structure of a website. How can I use the permalinks? 

James,

I can see your concern here, but this is how all websites work, as far as I know. I just don’t see it as a cause for concern. The software is open source, so people can view the code and determine the folder structure anyway. If your server has folder browsing turned off (which is generally the default, and is covered in the Post-Install Config Section, item 6, of our install guide), then there should be nothing to worry about.

I don’t think permalinks would help here: running it an iframe might though, but you would have to play around with it to get it working.

Thanks,

Ross