Here is a problem faced by me while handling the GET request method :
suppose the login form has user-id and password fields as text boxes. now after clicking on "sign-in" button the address bar of the following page(i.e the homepage of a particular member) shows:
<serverURL>.php?id=<someID>&pass=<somePass>
- where "id" and "pass" are the names of above mentioned textfields of login form. The technique works fine, except the password is clearly displayed in the address bar. Any person havig very little intelligence will at once decode it and know the password of the user beside him. Now my qtn is, how to tackle with this shortcoming ?
REMEMBER: I have to do it by GET method only, and not by POST !