I am embedding my form behind a secure page but if someone, somehow got access to the form URL, they would be able to process the form (which sends to a webhook).
Cognito-forms – way to remove public access to the form
cognito-forms
Related Solutions
Cognito Forms allows you to post a JSON document to webhooks when new entries are submitted that accurately reflects the data being collected. Forms can be hierarchical with multiple repeating sections and even nested repeating sections, so it naturally lends itself to being expressed using JSON. Repeating sections are not stored in a single field--they are actually arrays of child entities that have their own fields and children.
For example, the form you described might look like this:
And the corresponding JSON looks like this:
As you can see, the Children repeating section is represented correctly in JSON as an array of child entities, each of which have Name and Gender fields.
It sounds like you want to use a form, but not display a Submit button. The easy way to do this would be to edit your site, and update your HTML box to include the following code above your form embed code:
<style>#c-submit-button { display:none; }</style>
This will prevent users from seeing (and thereby pressing) the submit button.
Disclaimer: I am an engineer on the Cognito Forms team
Related Topic
- Cognito-forms – How to correctly embed Cognito Forms into secure pages (SSL)
- Cognito-forms – Save and return
- Cognito-forms – How to export the cognito forms resume URL for all incomplete submissions
- Cognito-forms – Prefilling a Cognito form
- Cognito-forms – Limit sub-user access to specific filters on same form
- Cognito-forms – Cognito forms Question – can you view the page url the form entry was submitted from
Best Answer
Currently, the best way to prevent people from accessing your public form is to add some simple password protection - check out this blog post for step-by-step instructions on how to do this.
In the future, the Customer Portal feature (which allows customers to create their own custom logins and restricts form access via username and password) should meet a lot of your needs in this regard.