If your really want to secure that kind of stuff, you could add an extra hidden field with an encrypted version of the article ID:
<?=$input->hidden('postIdKey',array('value'=>sha1(Configure::read('Security.salt').$post['Post']['id'])))?> and then after submission check if this key is correct: if ($data['Post']['postIdKey'] == sha1(Configure::read('Security.salt').$data['Post']['id'])) Miles J wrote: > > > Just grab the id from the actions ID argument. > > > > -- View this message in context: http://www.nabble.com/Passing-data-from-the-view-to-the-controller-tp25180826p25186878.html Sent from the CakePHP mailing list archive at Nabble.com. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to cake-php@googlegroups.com To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---