Hi, do you mean the CSRF token? For now i'm not using it (deactivated it), i will deal with it later. I thought about extending Ext.data.Model and add the token to each request (got it somewhere before). This will be more complex when using "intention" and make the token unique for each form. Maybe it's better to build a custom token generator (EXT JS side) and a custom validator (Symfony2 side). I will try a couple ideas and drop you a line ...
Michael -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to symfony-devs@googlegroups.com To unsubscribe from this group, send email to symfony-devs+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en
