im使用这样的jquery ajax代码
url:'userlogin', // the function that process the mapped url name and matching type is going to receive the data//
type:'POST',
data:{user_email:email,user_password:pass},// function to get the value from jsp page and send it to mapped class function//
success: function(response){// if the backend process is success then the function will run by getting the response as its parameter//
window.location = "http://localhost:8080/project_law/user_loginsuccess"
}
});
它将是一个安全线程,因为可以在客户端访问javascript和jquery url,并且攻击者可以利用此成功url来访问此url或任何其他url