Hi, I added
var $components = array('Security');
side note : $components[] = "Security"; doesnt seem to work.
To the controller methods that had forms and it added what appears to be
hashed values like
<input type="hidden" name="data[_Token][key]"
value="a42f93265c0877526a6fd85a950995e95f9a64d0" id="Token1667488091"
/>
<input type="hidden" name="data[_Token][fields]"
value="8b6efb641701aa4f0785acf1fb4f9e786183261e%3An%3A0%3A%7B%7D"
id="TokenFields2057676299" />
However, when I used firebug to add a text field to a form, it did'nt seem
to make much difference. I was able to submit normally and my records
appeared in my db.
It also doesn't appear documented that it should do anything in the
cookbook? It sounds great but I think I'm missing something.
DRE
On Sat, Jan 24, 2009 at 10:40 AM, DRE <[email protected]> wrote:
> Thanks Jitka,
> Best comments I've had of anyone who's looked a it. I'll update those this
> evening.
> Anybody know how I could get my site on that list ?
> http://book.cakephp.org/view/510/Sites-in-the-wild?
>
> Thanks!
>
>
>
> On Sat, Jan 24, 2009 at 6:12 AM, jitka (poLK) <[email protected]> wrote:
>
>>
>> If SecurityComponent is used by controller (include it in var
>> $components is everything you need to do), security tokens are added
>> by FormHelper automatically.
>> Usage of SecurityComponent is highly proposed, because it blackholes
>> request when some hidden field was modified or some fields were added/
>> removed in browser.
>> >>
>>
>
>
> --
> DRE
>
> http://www.increasetheknowledge.com
> http://www.theanticool.com
>
--
DRE
http://www.increasetheknowledge.com
http://www.theanticool.com
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"CakePHP" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
