Magento URL-Safe Parameter – Best Practices

parameterurlurl-key

I want to transmit a token as URL-Parameter.

Is it safe to just encrypt the token like in Version 1?

Or needs the token to be encoded like in Version 2 because of unsafe characters?

$token = Mage::helper('core')->encrypt('123');

//1) encrypted token
$url = Mage::getUrl('product/index/link', array('key' => $token));

//2) url encoded token
$encoded = Mage::helper('core')->urlEncode($token);
$url = Mage::getUrl('product/index/link', array('key' => $encoded));

Best Answer

Since the encrypt-function may produce unsafe characters like = or + only the second method with base 64 encoding will be safe.

Use this twoliner:

$key = Mage::helper('core')->urlEncode(Mage::helper('core')->encrypt(123));
$url = Mage::getUrl('product/index/link', array('key' => $key));

Related Solutions

How to Send Parameter to Function from Block

You can add a tab either by specifying the exact block

'content'   => $this->getLayout()->createBlock('netgroup_attributegrouping/adminhtml_form_edit_tab_managegroup')->toHtml(),

In this case you can pass a parameter to the block before calling toHtml().

'content'   => $this->getLayout()->createBlock('netgroup_attributegrouping/adminhtml_form_edit_tab_managegroup')->setSomeValue($valueHere)->toHtml(),

or if it's an ajax tab you specify the url in which case you can just pass a parameter in the url

'url'=> $this->getUrl('*/*/index/' ,array('param_name'=>$paramValue))

You cannot have a tab that is generated from both, content and url.
[EDIT]
If you are using the url approach, you can read the value sent through the url in your controller like this:

$value = $this->getRequest()->getParam('param_name'); 
//or
$value = Mage::app()->getRequest()->getParam('param_name');

Magento – way to pass a coupon code as a URL parameter

You can use just the Magento core URL for coupon posting: http://example.com/checkout/cart/couponPost/coupon_code/MY_COUPON_CODE You can also add on ?return_url=http... if you want a specific return url or let it just redirect to the cart by default.

Best Answer

Related Solutions

How to Send Parameter to Function from Block

Magento – way to pass a coupon code as a URL parameter

Related Topic