Hi,
I've developed application in Office365 using CSOM/Javascript. Security team from client side has been reported one major issue to the our system that any end user can comment our CSOM/Javascript code and bypass the validation or can update / insert into list item using developer tool/ Console in Google Chrome(F12 Key).
Also end user can write his own seperate code in console of Google Chrome (Developer Tool / F12) and can update / insert into List.
Note:- End user has Add, Edit, View permission.
This is one major security flaw of the Sharepoint/Office365 to use CSOM /Javascript for writing code, to overcome this issue could you please provide solution.
Looking for reply.
Thanks,
Mahesh Sherkar
mahesh.sherkar@bitwiseglobal.com
mahesh.sherkar@gmail.com