Thread: Changing Price through HTML Links
View Single Post
  #3  
Old 04-19-2017, 10:18 PM
  qualiteam's Avatar 
qualiteam qualiteam is offline
 

X-Guru
   
Join Date: Dec 2010
Posts: 6,373
 
Default Re: Changing Price through HTML Links
What if a customer opens such a link but with "price=0.01". Will it allow him to buy the product for a cent?
It looks very unsecure to me.

I think you should look into using REST API to inject one-time validation codes into a custom XC5 table, then pass a hash from this code along with your "custom price" request and validate if the hash compares to the validation code stored in the database. But this requires a custom module, of course.
__________________
Alex Solovev,
Qualiteam

---

User manual Video tutorials X-Cart FAQ

You are welcome to press "Thanks" button
if you find this post useful

Click here to learn how to apply patches

X-Cart Extensions
Reply With Quote