It feels like a request made by someone who is completely ignorant of technology... There will be no display without ajax request, just pure back-end rendering
First, there is no need for ajax to render data in the background Second, using ajax to use an intermediate interface to only return the data required by the front-end It is impossible to expose the payment interface of our project to the front-end. It is the combination of these two methods
Cannot be hidden //You can use the backend to determine whether the connection source is legal. If it is not legal, close the connection // $_SERVER['HTTP_ORIGIN'] identifies which site the page request comes from if($_SERVER['HTTP_ORIGIN'] != 'http://www.baidu.com') { die(); }
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
It feels like a request made by someone who is completely ignorant of technology... There will be no display without ajax request, just pure back-end rendering
ajax request is also an http request
As long as it is an HTTP request, you can see the request address, parameters and response by capturing the packet
Don’t waste energy unless you don’t use HTTP protocol.
First, there is no need for ajax to render data in the background
Second, using ajax to use an intermediate interface to only return the data required by the front-end
It is impossible to expose the payment interface of our project to the front-end. It is the combination of these two methods
Cannot be hidden
//You can use the backend to determine whether the connection source is legal. If it is not legal, close the connection
// $_SERVER['HTTP_ORIGIN'] identifies which site the page request comes from
if($_SERVER['HTTP_ORIGIN'] != 'http://www.baidu.com')
{
die();
}
Change the idea, the browser cannot hide it, the browser exposes the API, there is no such API