Quote:
Originally Posted by 0PiX0
The security check still should be on the server-side. Anything on the client-side should be treated as if it could possibly be manipulated.
|
Can I still use
PHP Code:
function onActionServerside() {
this.allowed = {"whatever"};
}
//Rest of code
Or is there a different way?