Yes, you are correct my local system is a Windows system. My host uses Linux and this problem is not replicated there, with one exception for the create action. /create is secured, /Create is not.
I think most Symfony apps are running on Linux hosting but I guess this can still be an issue for the small number of Symfony users that might be using Windows hosting. Again, I've solved it for myself with the patch I described. I just want to be sure this isn't a larger problem for anyone else or Symfony in general. You could still consider this an application shortcoming because right now we are relying on Linux case-sensitivity for security. I am happy to be proven wrong though. > Isn't it limited to Windows systems (no case sensitive file > systems) ?? > > I only use linux machines and Symfony 1.0 and I always get the login > module. So I think I am not concerned. > > But I noticed that Action = action probably because ucfirst is used > anywhere.. > > Too much magic where it is not needed - too less where it is.. ? :-( --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en -~----------~----~----~----~------~----~------~--~---
