| Author |
 Topic  |
|
chri5k
Starting Member
2 Posts |
 Posted - 16 April 2003 : 19:38:43
|
Hi All,
I would like to know if there is a way to put the search terms in the URL rather than having to click on the search icon and enter the terms then click search. I have seen other ASP based forums where the URL for a completed search is something like this
http://www.site.com/forum/search.asp?keyword=Test&sort=1....
Whereas the results from a search with Snitz looks like this
http://forum.snitz.com/forum/search.asp?mode=DoIt
This would allow links to searches directly in replies and allow links in otjer portions of a site to reference a search. Any help will be appreciated.
Thanks,
Chris |
Edited by - ruirib on 08 July 2003 17:57:08 |
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
|
|
chri5k
Starting Member
2 Posts |
Posted - 16 April 2003 : 20:35:06
|
Nikkol,
Thanks for the info re security. I had thought of that but this would be on a small intranet and not on the Internet so the risk would be reduced but not eliminated. Is there a way to encode the serach in a URL?
Thanks,
Chris |
 |
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
ROB
Junior Member
USA
347 Posts |
Posted - 01 June 2003 : 14:30:45
|
Is it really a sql injection risk? Is there not some way around this?
If I could link to search results, life would be much easier for my moderators. |
Jeff (ROB) Hester
BigBlueNetwork | BigBlueBall | Christian Church Today |
|
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
Posted - 01 June 2003 : 14:33:34
|
quote:
Originally posted by ROB
If I could link to search results, life would be much easier for my moderators.
Explain. Why is it hard for them now? |
Nikkol ~ Help Us Help You | ReadMe | 3.4.03 fixes | security fixes ~ |
|
|
|
Aaron S.
Average Member
USA
985 Posts |
Posted - 01 June 2003 : 14:54:06
|
I think he means that moderators (or whomever) could display a search result as a URL rather than referring them to the search form and telling them which keywords to enter.
--Aaron |
DOWNLOAD GREAT NEW MODS HERE |
|
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
|
|
ROB
Junior Member
USA
347 Posts |
Posted - 03 June 2003 : 17:35:38
|
Yep, that's what I meant. But I'm still wondering if there really is a SQL injection risk, and if so, if there's any way to avoid it. I'm not looking for a solution, just an opinion.
If it looks like it's safely do-able, I'm up for creating a version of search.asp that uses the URL querystring. This would solve the problem. |
Jeff (ROB) Hester
BigBlueNetwork | BigBlueBall | Christian Church Today |
|
|
|
D3mon
Senior Member
United Kingdom
1685 Posts |
Posted - 03 June 2003 : 17:42:07
|
| Depends if the code checks the querystring variables for naughty characters/code. Running ChkString() on them before using them should work fine. |
Snitz 'Speedball' : Site Integration Mod : Friendly Registration Mod
"In war, the victorious strategist only seeks battle after the victory has been won" |
|
|
|
D3mon
Senior Member
United Kingdom
1685 Posts |
|
|
ROB
Junior Member
USA
347 Posts |
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 08 July 2003 : 18:01:03
|
quote:
Originally posted by ROB
Works beautifully. I've integrated it with the version of search.asp optimized for SQL Server and it's sweet. Thanks D3mon!
Well I guess you could provide a link to that. Other people may be interested in it. |
Snitz 3.4 Readme | Like the support? Support Snitz too |
|
|
|
PeeWee.Inc
Senior Member
United Kingdom
1893 Posts |
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
MarcelG
Retired Support Moderator
Netherlands
2625 Posts |
Posted - 22 July 2003 : 10:54:00
|
D3Mon, ...I installed your version, and now I have the following problem:
If a search is done, for which there are more results than can be shown on one page, you can select the page from the dropdown list...
However, if you select another page, you are not redirected to that page.
Example: (sorry, it is intranet, so these links don't work here).
Original search url:
http://nlzum140.nl.int.atosorigin.com/forum/search.asp?mode=DoIt&Search=test&andor=1&Forum=0&SearchMessage=0&SearchDate=0&SearchMember=0
Then, I select page 2:
http://nlzum140.nl.int.atosorigin.com/forum/search.asp?Search=test&andor=1&Forum=0&SearchMessage=0&SearchDate=0&SearchMember=0&whichpage=2
I seem to be missing the mode=DoIt& part in the new url.....however, I cannot seem to find out where this is done....
please help  |
portfolio - linkshrinker - oxle - twitter |
Edited by - MarcelG on 25 July 2003 05:16:53 |
|
|
|
Topic |
|
Topic Locked
