Patrick Joyce

July 16, 2007

Strange Ticketmaster Validation

The most important thing that you can do for the security of your web application is to validate all user input. That said, sometimes things can get out of hand.

I have DC United season tickets with a few friends. One (possibly the only) nice thing about DC United using ticket master is that they have an online interface to manage your tickets. You can print your tickets online or, if you’re not going to use them, email the tickets to someone else. This weekend 2 of us couldn’t go so I went online to forward our seats to another friend.

Seats 8 and 10 selected

Unfortunately I then got this validation error:

Please select consecutive seats

I’m not sure why I should only be allowed to forward consecutive tickets. This validation is particularly strange because I was allowed to forward each of the tickets individually without any problem.

So make sure you validate for safety, but don’t cripple your application arbitrarily.

More Articles on Software & Product Development

Agile With a Lowercase “a”
”Agile“ is an adjective. It is not a noun. It isn’t something you do, it is something you are.
How Do You End Up With A Great Product A Year From Now?
Nail the next two weeks. 26 times in a row.
Build it Twice
Resist the urge to abstract until you've learned what is general to a class of problems and what is specific to each problem.