On 23-Mar-07, at 8:44 AM, Matthew Flanagan wrote:
>> as i am very fond of saying - django is nothing but python >> > > Yes, but Django auth is really only for web apps and can be easily > bypassed in commandline scripts, for example: > > $ python > Python 2.4.4 (#1, Mar 21 2007, 14:34:56) [C] on sunos5 > Type "help", "copyright", "credits" or "license" for more information. >>>> from myapp.models import SomeThing >>>> for obj in SomeThing.objects.all(): >>>> obj.delete() > > If the full Django api is available on the system then this kind of > thing is difficult to prevent. afaik this is a design decision. *I* think it is a good feature -- regards kg http://lawgon.livejournal.com http://nrcfosshelpline.in/web/ --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
