If your __init__ method of the form reads the contents of the data kwarg and adds to self.fields then you can validate the additional fields.
If your form has a prefix you have to ensure that the dynamic fields that get passed in the POST also have the same prefix. However, this allows an attacker to arbitrarily add anything they want to their POST to see what happens. You probably know this, but be mindful of that when writing your validation and save() code. Shawn -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com. To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.