如果我使用 HTTPS,资源和查询字符串的路径是否安全地传递到服务器?即URI: http://server/path/to/a/resource?with=a&query=string服务器:服务器路径:/path/to/a/resource查询字符串: with=a&query=string 解决方案 这是一个很好的解释:http://answers.google.com/answers/threadview/id/758002.html#answer总结:只有主机和端口在未加密时可见.简而言之,是的.但是您不应将敏感数据存储在 URL 中,因为它可能在浏览器历史记录和服务器日志文件中可见.任何回头看的人也会看到.This is a follow up post of my previous question about BASIC auth over HTTPSAre the path to the resource and query string passed securely to the server if I use HTTPS?i.e.URI: http://server/path/to/a/resource?with=a&query=stringServer: serverpath: /path/to/a/resourcequery string: with=a&query=string 解决方案 This is a really good explanation of this: http://answers.google.com/answers/threadview/id/758002.html#answerSummary: only the host and port would be visible unencrypted.In short, yes. But you shouldn't store sensitive data in URL's since it may be visible in the browsers history and server logfiles. And anyone who looks over your shoulder sees it too. 这篇关于HTTPS、URL 路径和查询字符串的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持! 上岸,阿里云!
08-27 04:49