I'm writing an app that government organizations use for project management and other functionality, and, using the same app, open areas for citizen engagement, for example, crowdsourcing citizen ideas for government projects.
Citizens and government share the same data. Everything is locked down meticulously using decorators and db.auth_group but are there design improvements I can make to improve security, for example, only allowing citizen access via API so that they are not directly querying the shared tables? thanks, Alex Glaros -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
