1) a str() or repr() of the object, which could be just a string that contains the relative or direct path to the file. 2) This goes back to the difference between tickets issued during development, and tickets issued on the live site.
I agree, that information should not be available to any admin on the live site. However during development, using fake credit cards and fake ssn its not that big of a deal. Also, honestly, if that information is A) being stored in a database, or B) admin has access to source code, there is absolutely nothing stopping them from getting the information anyways. My argument, what is to stop me from dumping credit cards into a text file that is emailed to me before I send the info to say, paypal? Nothing, just my integrety as a software developer and a human being. Some things, web2py just can't secure for physical reasons. The advantage here is, the tickets are not available to the public, only to administrators, and perhaps tickets should also use the "groups" auth setting to determine what information to actually display. Why limit a developers ability to debug code, that is one thing Django does right, they make sure to give you as MUCH information as possible when an error is triggered. (although, 75% of it is useless in any normal bug, but sometimes, its useful) For me, if there is an exception that gets raised, say "invalid literal for int() base 10 on line 253 of file.py" dealing with dynamic data, thats great, obviously the value is not a number, but you know what, I would LOVE to know what the value of that variable actually is, and exactly what in it caused the exception to be raised (because when your importing 10000 records from an external source, it would be nice to know what record caused it., instead I end up having to go either into the command line or raising my own exception before and appending the variable to the exception value. -Thadeus On Wed, Oct 14, 2009 at 1:28 PM, mdipierro <[email protected]> wrote: > his is not so much a technical issue. The issu --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "web2py-users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/web2py?hl=en -~----------~----~----~----~------~----~------~--~---
