Level 75
Are they logged in?
Jan 18, 2021
4
Level 1
Hide url or browser variable
Hi, I have the following url when editing a field http: // localhost: 8081 / guest / 2 / edit.
Is there any way i can hide the id and get a cleaner path? laravel 8- thank you very much in advance
Level 1
yes
Level 75
Then don't use that in the URL, in the controller get the auth user id.
$id = Auth::id ();
https://laravel.com/docs/8.x/authentication#retrieving-the-authenticated-user
Level 3
If that is the User's ID, use the solution jlrdw offered up. Do not display or store the User's id in the URL or the form. There is no reason for them to ever know what it is. Nope... I personally consider that a security risk. If wanted, I can explain why I feel that way.
You could put the record's entry id's value in a hidden field and not need to pass any # in the URL.
Btw, I use the User's ID for all of the queries, even though I know the Entry ID is or should be valid. This allows for a better validation that the User is viewing, editing, deleting their entry.
I hope this helps.
2 likes
Please or to participate in this conversation.