The data is transmitted on the wire in the same exact manner via an ajax POST or the usual POST. The only security needed is SSL, for both, if you don't want to pass credentials in clear format.
On Saturday, March 2, 2013 12:24:44 AM UTC+1, Alan Etkin wrote: > > +1 for auth,ajax_login() > > > I'm also interested in a bare ajax login feature, but, what about the > security risks of passing credentials with javascript in the background? > What are the issues to take in account for that feature? I there any > standard way of securing the passwords and other sensible data that can be > used? > -- --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
