Woops... didn't mean to post the same thing again. Thanks, you've set me on the right path at least, I can generally find my way with a little direction.
On Oct 16, 2:51 am, "David C. Zentgraf" <[EMAIL PROTECTED]> wrote: > Dabble around with the debug() method, like > > $this->data = $this->Model->find( /* conditions */ ); > debug($this->data); > > You'll find the answer eventually... > > On 16 Oct 2008, at 16:41, Cody Sortore wrote: > > > Okay, I added this: > > > if ($secretid != /* What Goes Here? */ ) { > > > $this->flash(__('Invalid Secret Identification Code', true), > > array('action'=>'index')); > > > } > > > Tried several different things, but I'm a noob, which is why I > > couldn't get it to work in the first place, I was just messing around > > with some of the code that was baked up for me but it's not working. > > How do you call a single item from the database? > > > On Oct 16, 1:28 am, "David C. Zentgraf" <[EMAIL PROTECTED]> wrote: > >> Think twice about what's actually going on in that code... > > >> If no $id or $secretid were supplied, you redirect somewhere else. > >> If $this->data is not empty... doesn't matter. > >> Then, last case that always gets triggered if there's ANY $id or > >> $secretid, you fetch the data from the DB and present it to the user. > > >> There's no validation of the $secretid going on whatsoever, how do > >> you > >> expect it to work? > > >> On 16 Oct 2008, at 14:36, Cody Sortore wrote: > > >>> Okay, with the particular site I'm building a log in system isn't > >>> necessary, and people don't want it. The problem is that I want to > >>> allow the creator editing access still. People make mistakes, or may > >>> need to delete spam comments occasionally. > > >>> What I was thinking was to have a place when creating their page > >>> they > >>> put in a "secret id" that then goes into the database and what I > >>> want > >>> to do is so that the only way to access the edit page is to have > >>> that > >>> secret id in the url for example: > > >>>http://www.testsite.com/inventory/edit/secretid/1/ > > >>> I've actually got that working with this code: > > >>>http://bin.cakephp.org/view/1344979601 > > >>> and a view that has a hidden field for the secret id. Problem is > >>> with > >>> what I have anything in place of the secret id allows you to edit. > >>> Examples: > > >>>http://www.testsite.com/inventory/edit/12345/1/ > >>>http://www.testsite.com/inventory/edit/iamahaxor/1/ > >>>http://www.testsite.com/inventory/edit/1/1/ > > >>> will all allow you to edit inventory item number 1. > > >>> Another annoyance I've noticed is that if you have an inventory > >>> number > >>> higher than what the table goes up to. Say with this one in test > >>> runs > >>> I've only got 3 inventory items to work with right now. If I put: > > >>>http://www.testsite.com/inventory/edit/secretid/1337/ > > >>> it simply adds another inventory item to the list... this like I > >>> said > >>> is only a minor nuisance and can be ignored, the important part is > >>> the > >>> data validation (which may be fix this trouble too). --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---