Alberto Valverde wrote: > I wonder if it would be a good idea to make it a default... Hmm, > could this open the door to XSS attacks? (I guess probably not since > the attacker would need to hijack the cookie, modify it, and then > make the attacked browser use it... but you never know...)
Strangely, I was worried about that too, but came to the same conclusion that you're lost anyway if somebody can hack your cookies. >> I wanted to add this to the docu but found that flash() wasn't even >> documented anywhere :-( or did I overlook something? > > Feel free to start a "flash" page :) I think what's missing is a page explaining not only flash() but also other basic stuff that does not fall into one of the big categories. Maybe "TurboGears Basic Tricks" or "TurboGears Idioms" or even "TurboGears Magic" (explaining all the automagical things going on under the hood that are not explained elsewhere)? -- chris --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears?hl=en -~----------~----~----~----~------~----~------~--~---
