On 23 mayo, 08:58, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> wrote:
> I have a model that is updated with a simple form and model->save, but
> I purposely left feilds out of the form so a user can't update them.
>
> However, as far as I know, it is possible for a user to construction a
> form with the additional fields and the controller would save the
> model without a problem.
>
> I may be answering my own question, but is there a good way of
> preventing fields from being updated in certain contexts other than
> setting them to NULL before doing a save?
>
> Thanks in advance!
Look in the api for the parameters for the model save method
(whitelist means "ignore anything that isn't in this list of fields).
In 1.2 there is automatic form-fiddling prevention.
hth,
AD
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "Cake
PHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
