Hi Yaron and everyone!
We experimented a bit with Semantic Forms and found that the forms do
not validate the correctness of the values for 'values from category'.
Here is an example: I define a form with the field
{{field|nameofthefield|values from category=Mycategory|input type=dropdown}}
My intuition is that it's impossible to enter the value that is not
listed in a dropdown, so I want to rely on some validation mechanism
of SF.
It's not so, unfortunately.
Using Firebug or Chrome Developer (see [1]) I can alter any <option>
in a dropdown and send the data that is not allowed (see [2]).
Yaron, is the enhanced secuirity and validation of Forms currently in
the roadmap? IMHO it's a serious issue for those who use semantic
forms to really restrict the editing of the pages.
[1] http://i.imm.io/Jdm3.png
[2] http://i.imgur.com/WkPpG.png
-----
Yury Katkov, WikiVote
------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_sfd2d_oct
_______________________________________________
Semediawiki-devel mailing list
Semediawiki-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/semediawiki-devel
