Skip to main content
Nintex Community Menu Bar

We are currently looking for a way to mask all the Smart objectS method rest API requests that is been called on the smart forms, when the security team ran a vunerality test, it was discovered that all the parameters can be seen and manipulated from the browsers, the request was loaded on the browsers they could intercept and manipulate the data, is there a way to encrypt all smart objects call from the browsers esp API calls to LOBs.

Here are some ideas:



1. Make sure you are using the https protocol instead of http.



2. Check out this KB article for obfuscating method names (which is enabled by default): Capture Method Name in Fiddler Trace - Nintex Community


Reply