On 28 Mar 2010, at 22:41, Bill Moseley wrote:
Hopefully, that's clear -- and correct. ;)
Yes, I think so - in the reply I just sent to the list to this thread I had entirely neglected to notice that the main issue is the JSONP thing, rather than the general case of XSRF.
Not to say that the latter isn't a problem worth thinking about, but in the case illustrated it's clearly the JSONP which is the issue.
Thanks for reading/analyzing in more detail than I managed to :( Cheers t0m _______________________________________________ List: [email protected] Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[email protected]/ Dev site: http://dev.catalyst.perl.org/
