Am Donnerstag, 3. Juli 2014 15:30:09 UTC+2 schrieb Bert JW Regeer:
Hello Bert,
If your GET requests are not idempotent (i.e. They will always return the
exact same response, and don’t modify any state) there is no cross site
request forgery that can happen.
I think you mean if the GET
On Tue, Jul 8, 2014 at 2:27 AM, Torsten Irländer tors...@irlaender.de
wrote:
I think the general conclusion that GET request are not vulnerable is only
true under certain circumstances. And I as a implementer do not want to
think about every GET request if it might get a threat in some
On Jul 4, 2014, at 5:07 AM, SamuraiNinja007 mr.gro...@gmail.com wrote:
I'm mostly just looking for advice and experiences with this question. I'm
not looking for advice on my particular case; I'm just curious about when a
view callable class has created or relieved stress in the past for
Am Dienstag, 8. Juli 2014 15:23:47 UTC+2 schrieb Chris Rossi:
On Tue, Jul 8, 2014 at 2:27 AM, Torsten Irländer tor...@irlaender.de
javascript: wrote:
I think the general conclusion that GET request are not vulnerable is
only true under certain circumstances. And I as a implementer do
Hi,
when I tried to install Pylons 1.0.1 (required by another project)
with python setup.py install
I got the following error
...
copying Pylons.egg-info\not-zip-safe - build\bdist.win-amd64\egg\EGG-INFO
copying Pylons.egg-info\requires.txt - build\bdist.win-amd64\egg\EGG-INFO
copying
If you have expensive calculations, you can just lock them down onto a POST
page under HTTPS with a CSRF token. That will eliminate most issues.
You can also segment expensive routes to run in their own application
instance , and throttle users (based on session, ip, etc ) so that general
I don't think pylonshq is used anymore. Those links should probably be
fixed. I'll file a ticket.
You might be able to just remove these 2 lines from setup.cfg:
[easy_install]
find_links = http://www.pylonshq.com/download/
You can grab most (all?) of the packages from
Yup webassets is what I was going to say...
http://webassets.readthedocs.org/en/latest/
On Tue, Jul 8, 2014 at 1:50 PM, Michael Merickel mmeri...@gmail.com wrote:
I think the closest that exists right now is usage of something like
pyramid_webassets to manage your static assets.
In my own
thanks for answers.
Looked briefly documentation, but did not understand until the end,
whether you can use this module to copy the contents of a directory like
this?
my apps:
project/app1/static/style.css
project/app2/static/style.css
in console:
script_based_on_webassets.py --collectstatic