Hello.
I am beating my head (for 2 days now) against trying to extend the good old
todopyramid example from sixfeetup.
In particular,this have an ajax based popup editor for data, and I have
been extending the schema/models for a few different datatypes, and trying
to associate suitable widge
Hello,
I've been trying to get Sentry[1] working properly for CKAN (built on top
of Pylons). The original Sentry documentation doesn't seem to work very
well. I spent a bunch of tweaking the settings and reading the config until
I got something working[2]. Now, the problem is that I need to set
i keep the log files on the actual root in /var/log/MyApp . they can get
large , and that is on it's own partition ( so nothing dies if the logs
don't rotate by accident )
--
You received this message because you are subscribed to the Google Groups
"pylons-discuss" group.
To unsubscribe from
On Thu, Apr 24, 2014 at 1:33 PM, Randall Leeds wrote:
> On Apr 24, 2014 7:39 AM, "Anders Wegge" wrote:
> >
> > In the classic meaning of CSRF, you are right. But if javascript from a
> malicious site can get access to all cookies in the browser, it would be
> trivially simple to construct a XmlHt
On Apr 24, 2014 7:39 AM, "Anders Wegge" wrote:
>
> In the classic meaning of CSRF, you are right. But if javascript from a
malicious site can get access to all cookies in the browser, it would be
trivially simple to construct a XmlHttpRequest, that contain the correct
CSRF token. While most browse
FWIW, I handle my user interactions like this:
there's a 'normal' pyramid beaker session on http sessions used to maintain
login state and display data. ( request.session )
there's a secondary https only session , provided by a quick library i put
together ( request.session_https )
pyramid_s
In the classic meaning of CSRF, you are right. But if javascript from a
malicious site can get access to all cookies in the browser, it would be
trivially simple to construct a XmlHttpRequest, that contain the correct
CSRF token. While most browsers are sandboxing data, I do not want to rely
on
On 23-04-2014, Michael Merickel wrote:
> --001a11c3f51a5ce90d04f7bc3072
> Content-Type: text/plain; charset=UTF-8
>
> On Wed, Apr 23, 2014 at 3:59 PM, wilk wrote:
>
>> Could you give an example of a serializer object wich will record the
>> session on a dict in memory for example ?
>>
>
> https://
