Are table rows in the user_systems and users tables named the same? If so, I would rename the rows in the users table so that they differ from user_systems and retry.
On Apr 30, 9:46 pm, "Dave Maharaj :: WidePixels.com" <d...@widepixels.com> wrote: > Question about selecting fields allowed to have data saved to with a HABTM > save. > > I have a users_systems table which has id, user_id, system_id and a form to > update the users systems only...no other data. > > Now I do not want a User attempting to edit the form and edit other data > thats saved in the database by adding a data[User][group_id] text field or > anything. > > The code below i added which gets a list of the tables in the database i am > going to be saving to, in this case its the users_systems table. So i debug > and sure enough i see the 3 fields id, user_id, system_id. > > Are the fields in the save() function in addition to the User->$join_table > or if you leave it blank only fields in the User->$join_table->can be saved > to? > > Basically I want to restrict data being saved exclusively to the fields in > the User->$join_table and no where else. > > But its still saving data to the User table when I add a text field using > firebug to the database. How can I only allow data to be saved to the fields > in the users_systems table? Using AJAX so Security Component is of no use I > guess. > > // this seems to do nothing as i can save other fields by adding a text > field manually with firebug to save user entered data. > $whitelist = array('system_id'); > > debug(array_intersect(array_keys($this->User->$join_table->schema()), > $whitelist)); > $this->User->save($this->data, true, > array_intersect(array_keys($this->User->$join_table->schema()), > $whitelist)); > > Ideas? > > Dave --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---