News
Corporate Class Inc: Major Improvements
April 7, 2010
The original Zen Cart based solution did not support password protected file downloads. As per client’s request the admin can now specify a username, password, and a file location for each downloadable file. Due to the monolithic plug-in architecture of Zen Cart this new functionality could not be packaged into a self-contained plug-in.
The hosting provider had also temporarily disabled access to mailing servers due to countless email injection attacks originating from Corporate Class Inc.’s site. It is unfortunate that the web programmers working previously for this client were not aware of the most basic security issues. We had to ensure that the information inserted in various forms on the site was cleaned up properly before being inserted into emails. ReCaptcha was also added to all the forms to prevent automatic submission by bots.
Our final task was to connect all newsletter subscription forms directly to Constant Contact which the client uses for managing newsletter subscriptions and mailing. Constant Contact provides a nice API, so we integrated this functionality on the site’s backend. Now the client no longer has to manually add new newsletter subscriptions.
Comments