posted 16 years ago
It is considered risky to rely solely on client-side validation. For one thing, it's possible for a user to disable JavaScript at the browser level, thereby circumventing your validation rules.
While client-side validation is valuable and can save round-trips to the server by eliminating obviously invalid information, it should not be relied on completely and should be reinforced by server-side validation.