1๐
โ
What non-client-side information can I POST
None. The POST request comes from the client. You can only send information that is available to the client.
Currently, I use the โidโ attribute as a temporary solution. But users could potentially modify the data
So authenticate the user, then check if they are authorised to upload a file for that id.
๐คQuentin
Source:stackexchange.com