...or is it safe to stick for example user data and passwords into the models?
preguntado el 08 de enero de 11 a las 22:01
The viewers can't see the MVC code as what they see is the generated HTML not the aspx pages or code behind.
Sin embargo, es nunca a good idea to store user data and passwords in the models. This should be stored in a database and the passwords should nunca be stored in plain text.
No, they can't see the MVC code but you still need to ensure that the site and server are secure whether the user credentials are stored in a database, the code, or in text files in a private store.
User's won't see your server-side code. So yes, it is safe to put secret stuff in your models. But I guess you would be better off storing information like that in a database?
The user can never see that is executing on the server unless you explicitly write it out through ie. the