Question
Is there a way to hide email on view source when validation error found using validateAt = onServer?
I'm confused!
Here's what I'm doing. I have two seperate files, one is form.cfm and one is formdo.cfm.
On form.cfm, I have the cfform, that takes a name, email, phone number, and message and is set with validateAt onSubmit and onServer with correct syntax in the code. the cfform action is set to formdo.cfm.
formdo.cfm is the other file that handles all the form data and uses cfmail to send it to an email address. formdo.cfm grabs all the input fields from form.cfm and shoots out an email with all the form inputs. I've tested all of this and it sends an email and the form contents as it should.
So next, I tested the onServer validation with Javascript off, and sure enough it told me I had an error and to go back and fix it.
Good there, except when I viewed the source on the server validation page, it shows the email address in English even when encoded with the character entities. However, if you just call this file up by it's URL/formdo.cfm it shows the character entities that I entered. I know this is because the server has already interpreted it but I'm wondering if spambots can steal that 'interpreted' email address and I don't especially like the fact that a real person can view it in source of the server validation page. (since I viewed the email address myself in plain english in the source of the server validation.)
So how can I hide this email besides character entities? Or are there any other anti-spambot considerations that someone could offer me?
Thanks for reading this!
Some additional info on the code in formdo.cfm (syntax is correct in actual code but written out here):
cfmail to = email_as_character_entities
from = POUND_Email_From_Last_Page_POUND
Here's what I'm doing. I have two seperate files, one is form.cfm and one is formdo.cfm.
On form.cfm, I have the cfform, that takes a name, email, phone number, and message and is set with validateAt onSubmit and onServer with correct syntax in the code. the cfform action is set to formdo.cfm.
formdo.cfm is the other file that handles all the form data and uses cfmail to send it to an email address. formdo.cfm grabs all the input fields from form.cfm and shoots out an email with all the form inputs. I've tested all of this and it sends an email and the form contents as it should.
So next, I tested the onServer validation with Javascript off, and sure enough it told me I had an error and to go back and fix it.
Good there, except when I viewed the source on the server validation page, it shows the email address in English even when encoded with the character entities. However, if you just call this file up by it's URL/formdo.cfm it shows the character entities that I entered. I know this is because the server has already interpreted it but I'm wondering if spambots can steal that 'interpreted' email address and I don't especially like the fact that a real person can view it in source of the server validation page. (since I viewed the email address myself in plain english in the source of the server validation.)
So how can I hide this email besides character entities? Or are there any other anti-spambot considerations that someone could offer me?
Thanks for reading this!
Some additional info on the code in formdo.cfm (syntax is correct in actual code but written out here):
cfmail to = email_as_character_entities
from = POUND_Email_From_Last_Page_POUND
AdChoices