[I hope that this question is not too broad, I think that the subject is very interesting but I incourage you to tell me if it's off-policy.]
My scenario is this:
- I have a LAMP website who stores also sensitive data and documents
- Only registered users are allowed to operate on the site, and only on certain data and documents. Users are stored in $_SESSION variables
- Most of the pages implement a sort of rudimental permission control, but some important DB operations are called via AJAX
- AJAX security is implemented very poorly, as anyone that is that smart can tamper with the request sending whatever id they like and delete records with brutal simplicity
Asking for a complete book on security is obviously a bit too much (and I'm already reading and trying a lot on the subject), let's say that my main concern is if AJAX pages should be treated with special regards, as I need to secure the whole software to prevent hacks and other problems.