Keep in mind that this is more of a server-side thing. The only JS piece involves adding a variable value to your URL when pulling the data through a script tag or an iframe.
e.g.: http://mysite/myapplication?uniquevalue=foo Then, your server application should return an error (perhaps 500?) if the "uniquevalue=foo" pair isn't what the server expects at that time. If it is the expected value, then it returns the JSON/XML/HTML data that you're expecting. If you're using one of the popular java servlet containers, you'll automatically have a jsessionid that can be checked for validity. Other backend systems might require a more hand-coded approach. I hope this helps, at least with the concept. Unfortunately, each type of web application server/language is going to have a different way of building the moving parts, so it's hard to come up with concrete examples that work for everyone. - Brian >>>How about posting some example code that shows an example of how secret > one time tokens can be created and used within jQuery. > > I second that. It would go a long way in educating me on the proper way > of > doing things. > > -- > Benjamin Sterling > http://www.KenzoMedia.com > http://www.KenzoHosting.com
