Hi,
I’m actually not sure if this isn’t possible to begin with, but thought I should ask as it’s better safe than sorry.
On a number of my pages, I use jQuery.ajax() using the json data type. For example:
$("#button").click(function() {
var data = {
// fill data fields in here
};
$.ajax({
type: 'post',
url: '/ajax/public/basket',
dataType: 'json',
data: data,
error: function( response , error ){},
success: function( response ){
// put code here
}
});
return false;
});
Would it be possible for people to execute this script from their own server? If yes, is there any preventative measures I can take to block any remote execution of the script? And, are there any other safety concerns I need to be aware of?
Many thanks.