For any application, the client to do data validation is not safe and effective, but data validation is on an enterprise architecture project most basic function module, this time we are required to receive data service terminated It also verifies the validity of the data. Why do you say? Often we will feel when writing a program to verify the background does not matter, after all has been done to verify the client, no need to back-end data validation in a waste of resources, but it is precisely this kind of thinking is most likely to be abused and lead to others. After all, just a little experience in the development of know that we can simulate HTTP request to address the background, the process of sending some of the data relate to the background simulation system security request, the consequences can be imagined ....