FormsAssurity form properties

Form Properties

The left hand panel of the Design tab shows a tree format navigation panel allowing you to select the specific feature you want to work on. Below that panel are the properties and values appropriate to the function that has been highlighted. Each of these is now described in more detail.

Form Name
Enter a name for the form. This name is for your own purposes to properly identify the form. If this form is emailed to you then the form name will be the Email subject text.

Width
Width of the form. A value can be entered here or the width of the form can be changed by selecting the form and adjusting it’s width using your mouse cursor.

Height
Height of the form. A value can be entered here or the height of the form can be changed by selecting the form and adjusting it’s width using your mouse cursor.

Request Signature
Select the appropriate value depending on whether you require the user filling in the form to digitally sign it before submitting or not. Values available are :

Yes - the user must digitally sign the form – the form cannot be submitted until this has occurred;
Optional – the user can digitally sign the form if they want;
No – the user is not requested to digitally sign the form.

Hidden Fields
Use this property if you have more than one page to your form and you need to pass information from these pages to the secure form page so that it is transmitted along with the secure form data.

The hidden form fields you create are used to pass previous form information to the applet fields. These fields are not displayed within the applet form, but are passed with the submission data to the server/email account. For example, if you have a multiple page form that collects other information from users, e.g. the product name and quantity they have ordered, and you want to pass this information to the applet so it gets submitted with the secure form data then you will need to create two fields - one call product_name, the other called quantity.

Hidden fields can have static values (for example, <PARAM NAME = "fld_name" VALUE = "My Product Name">) or dynamic ones assigned via a script, using a parameter, (for example, <PARAM NAME ="fld_name" VALUE ="$Product_Name">). The parameter "$Product_Name" will take the value of a string parameter which was passed to the form applet from a previous html form page. See Integrating Secure Forms with your Ecommerce system for further information.

NOTE : Although this information is submitted with the secure form it will be transmitted and saved in the clear (it will not be encrypted).

OK Redirect URL
This is the URL to redirect users to once the form has been successfully submitted. For example, you might want to redirect users to a page that thanks them for filling in your web form, and tells them what to expect next. Example URL: www.mywebsite/success_form.html. If this value is left blank then users will remain on the secure form page after successful submission of the form.

Failure Redirect URL
This is the URL to redirect users to after a non-successful submission of the form. For example you might want to redirect users to a page that tells them who they should contact in the event that the form could not be successfully submitted. Example URL: www.mywebsite/success_form.html. If this value is left blank then users will remain on the secure form page after non-successful submission of the form.

Send Form Data by
Forms can be returned either by Email or by HTTP post. The method you choose depends on how you wish to process them. If you choose Email the information in the form will have to be processed in a manual system, but it will be more secure because it can be transported to a server inside your infrastructure that cannot be readily hacked. If you need to process the form information immediately as part of your business process then you should choose HTTP post, although this will mean that the information will be decrypted on the web server, which may potentially be exposed to hacking.

So, if you want to manually decrypt and process form data then select ‘email’. And if you want to automatically decrypt and process form data then select ‘HTTP post’. If you want to automatically decrypt and process form data you will need to purchase additional scripts from ArticSoft or provide your own to enable a server based system to be implemented. If sending by email NOTE that you must provide the SMTP service that the secure form is going to be sent by. Since the form cannot know if the form user has an Email client, or what it might be, FormsAssurity cannot rely upon the form user to provide the Email service. You will therefore need to setup an email account solely for the purpose of sending secure web forms to yourself. Access to the web mail account may be password protected, and that information is not accessible to the web form user.

Email Address
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Enter the email address you want the secure form to use when the form is to be sent back to you.

SMTP Account Name
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Enter the account logon name for the Email account you have provided for sending forms.

SMTP Password
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Enter the account logon password.

SMTP Authorization
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Select either true (server requires authentication) or false (server does not require authentication). It is recommended that you use an Email service that requires authentication.

SMTP Server
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Enter the SMTP outgoing server settings, for example, auth.smtp.websitename.com

Message Content
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘email’. Enter the message text you want to appear in the email that is sent to you with the secure form content.

Form Data Handler
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘HTTP Post’. Enter the phpx file which is the form data handler – e.g.http://articsoft-admin.co.uk/wsf_gpg/wsf_data_handler.phpx. If you purchase the ArticSoft server system the form name is the one specified in that service.

Form Data Processor
Only applicable if you have selected the ‘Send Form Data by’ field value to ‘HTTP Post’. Enter the phpx file which is the form data processor –e.g.show_form.phpx. If you have purchased the ArticSoft server system the file name is the one specified in the service.