I learned not to put the user ID in the cookie if it's used for more than just display, so instead I'm using a UUID.But does it matter if that same UUID is also in the database, in the user table? Should I use a different set of UUIDs instead, to prevent it being used in an attack like SQL injection?
Submitted May 01, 2019 at 09:33PM by CommercialOven1
No comments:
Post a Comment