On Tuesday, June 20, 2017 at 12:23:44 PM UTC-4, Michael Merickel wrote: > > I guess I felt like the notes at [1] were fairly informative. What did > you have in mind? >
I was hoping for someone to handle any gotchas, stuff like "you did that, now do this", and potential ways the CSRF stuff may have been previously integrated. I'm just paranoid about security related concepts like this and expect unit/integrated tests to miss a bunch of edge ccases, so want to make sure I migrate everything and regex the source code & site-packages for anything that touches it. I'll start to draft some notes to share for others when I get around to migrating. The exception view change is a large fundamental change, but I feel like that is easier to deal with -- but migration errors will just lead to a route triggering a 5xx view -- not potential security issues. -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to pylons-discuss+unsubscr...@googlegroups.com. To post to this group, send email to pylons-discuss@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/pylons-discuss/1a0b276e-db88-4e3e-90f9-4fe00ceebec0%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
