yes, that should be enough :) but what about ajax forms or dynamically added fields? those cannot be used with sec component in those cases you will have to manually secure your forms
On 21 Jan., 12:57, psybear83 <psybea...@gmail.com> wrote: > Hey everybody > > to my knowledge, the $whitelist attribute tells a model, which > attributes should be writable when it comes to a save. I'm using the > Security component which ensures that nobody tampers with my forms > (e.g. adding a new input field), so I guess I don't need $whitelist > anymore, right? > > Thanks for your opinion > Josh -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to cake-php+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php