If the session is still valid requires_login does not read the db but session.auth so you should be fine, but I am not sure and in any case it could change in the future. You can remove it and check explicitly for "session.auth.user is not None" in the body of the ajax action avoid unauthenticated users.
2014-02-13 22:29 GMT+01:00 Michael Ellis <michael.f.el...@gmail.com>: > That looks worth trying. Will I need to also remove the login_required > decorator from my ajax function? > > > On Thursday, February 13, 2014 3:57:02 PM UTC-5, Michele Comitini wrote: >> >> >> >> db = None >> def setup_dal(): >> db = DAL(...) >> db.define_table(...) >> db.define_table(...) >> return db >> >> if request.controller!='<the frequent ajax controller> and >> request.action!='<the frequent ajax action>': >> db = setup_dal() >> >> >> -- > Resources: > - http://web2py.com > - http://web2py.com/book (Documentation) > - http://github.com/web2py/web2py (Source code) > - https://code.google.com/p/web2py/issues/list (Report Issues) > --- > You received this message because you are subscribed to the Google Groups > "web2py-users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to web2py+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/groups/opt_out. > -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
