Client side validation and server side validation

Client side validation Vs server side validation

There is a usual question that which type of validations is better or best? Server side validation or Client side Validation ?

Client side validation and server side validation

Validations can be performed on the server side or on the client side ( web browser). The user input validation take place on the Server Side during a post back session is called Server Side Validation and the user input validation take place on the Client Side (web browser) is called Client Side Validation. Client Side Validation does not require a postback. If the user request requires server resources to validate the user input, you should use Server Side Validation. If the user request does not require any server resources to validate the input , you can use Client Side Validation.

Server Side Validation

In the Server Side Validation, the input submitted by the user is being sent to the server and validated using one of server side scripting languages such as ASP.Net, PHP etc. After the validation process on the Server Side, the feedback is sent back to the client by a new dynamically generated web page. It is better to validate user input on Server Side because you can protect against the malicious users, who can easily bypass your Client Side scripting language and submit dangerous input to the server.

Client Side Validation

In the Client Side Validation you can provide a better user experience by responding quickly at the browser level. When you perform a Client Side Validation, all the user inputs validated in the user's browser itself. Client Side validation does not require a round trip to the server, so the network traffic which will help your server perform better. This type of validation is done on the browser side using script languages such as JavaScript, VBScript or HTML5 attributes.

For example, if the user enter an invalid email format, you can show an error message immediately before the user move to the next field, so the user can correct every field before they submit the form.

Mostly the Client Side Validation depends on the JavaScript Language, so if users turn JavaScript off, it can easily bypass and submit dangerous input to the server . So the Client Side Validation can not protect your application from malicious attacks on your server resources and databases.

As both the validation methods have their own significances, it is recommended that the Server side validation is more SECURE!






Related Topics
  1. Asp.Net Interview Questions (Part-1)
  2. Asp.Net Interview Questions (Part-2)
  3. Advantages of ASP.NET Web Development
  4. What is IIS - Internet Information Server
  1. What is Virtual Directory
  2. What is HttpHandler
  3. Page Directives in Asp.Net
  4. What is a postback
  5. What is IsPostBack
  6. What is global.asax
  7. Difference between Machine.config and web.config
  8. Difference between HTML control and Web Server control
  9. What is Query String
  10. Difference between Authentication and Authorization
  11. How to secure Connection Strings
  12. What is ASP.Net tracing
  13. Passing values between Asp.Net pages
  14. How to Get host domain from URL
  15. Adding a Favicon To Your Website
  16. Asp.Net Textbox value in Javascript
  17. AutoEventWireup attribute in ASP.NET
  18. Can I use multiple programming languages in a ASP.net Web Application?
  19. Difference: Response.Write and Response.Output.Write
  20. How many web.config files can I have in an application?
  21. What is Protected Configuration in asp.net?
  22. Static variablesin .Net , what is their life span?
  23. Difference between ASP Session and ASP.NET Session?
  24. What does mean Stateless in Asp.Net?
  25. What is the Difference between session and caching?
  26. What are different types of caching using cache object of ASP.NET?
  27. Which method is used to remove the cache object?
  28. How many types of Cookies are available in ASP.NET?
  29. What is Page Life Cycle in ASP.net?
  30. What is the code behind and Inline Code in Asp.Net?
  31. What is master page in ASP.NET?
  32. Can you change a Master Page dynamically at runtime?
  33. What is cross-page posting in ASP.NET?
  34. How to redirect a page in asp.net without performing a round trip ?
  35. How to register custom server control on ASP.NET page?
  36. How do you validate Input data in Asp.Net?
  37. What's the difference between ViewData and ViewBag?
  38. Difference between Response.Redirect and Server.Transfer
  39. What is the function of the CustomValidator control?
  40. Define RequiredFieldValidator?
  41. Difference between custom control and user control
  42. Difference between Label and Literal control in ASP.Net
  43. What are the major events in Global.Asax file?
  44. What is Event Bubbling in asp.net ?
  45. What is Delay signing?
  46. What is the difference between in-proc and out-of-proc?
  47. What is the difference between POST and GET?
  48. A potentially dangerous Request.Form value was detected from the client