...@gmail.com]
Sent: October-03-09 4:45 PM
To: CakePHP
Subject: Re: Where request comes from?
I never said it would work with Ajax in the way your thinking, simply you
can have the Security component enabled and the Ajax handler will work
regardless if its on or not.
Additionally, just check
-09 5:45 PM
To: CakePHP
Subject: Re: Where request comes from?
The Security Component does this kind of thing for you. For example, it
will
embed a hash value into the form which is a checksum of the form. If a
field
is missing or added it will be captured. If a hidden value
submitted forms. I was just curious.
Dave
-Original Message-
From: Martin Westin [mailto:martin.westin...@gmail.com]
Sent: October-01-09 5:45 PM
To: CakePHP
Subject: Re: Where request comes from?
The Security Component does this kind of thing for you. For example
curious.
Dave
-Original Message-
From: Martin Westin [mailto:martin.westin...@gmail.com]
Sent: October-01-09 5:45 PM
To: CakePHP
Subject: Re: Where request comes from?
The Security Component does this kind of thing for you. For example, it will
embed a hash value into the form
-
From: Martin Westin [mailto:martin.westin...@gmail.com]
Sent: October-01-09 5:45 PM
To: CakePHP
Subject: Re: Where request comes from?
The Security Component does this kind of thing for you. For example, it will
embed a hash value into the form which is a checksum of the form. If a field
[mailto:mileswjohn...@gmail.com]
Sent: October-02-09 1:33 PM
To: CakePHP
Subject: Re: Where request comes from?
Well you can use my ajax handler, it wraps the security component so it
works with AJAX calls.
http://www.milesj.me/resources/script/ajax-handler-component
On Oct 2, 7:12 am, Martin Westin
Is there a way to determine / ensure that any requested action comes from
the server?
I mean more towards the aspect of forms. That when a form is submitted the
request is coming from the site and not someone who made a form and trying
to submit it to your site.
Just curious
Thanks,
Dave
I believe the FormHelper has some 'secure' stuff available for this ... best
to consult the documentation ...
On Thu, Oct 1, 2009 at 8:50 PM, Dave Maharaj :: WidePixels.com
d...@widepixels.com wrote:
Is there a way to determine / ensure that any requested action comes from
the server?
I
The Security Component does this kind of thing for you. For example,
it will embed a hash value into the form which is a checksum of the
form. If a field is missing or added it will be captured. If a hidden
value is modified this will also be captured. Also sessions will be
more secure and a lot
Subject: Re: Where request comes from?
The Security Component does this kind of thing for you. For example, it will
embed a hash value into the form which is a checksum of the form. If a field
is missing or added it will be captured. If a hidden value is modified this
will also be captured. Also
10 matches
Mail list logo