Controller has ajax callback:
def dummy_ajax_callback():
return 'jQuery("debug").html("hello world")';
We all know that this can be accessed improperly by redirection:
http://www.mydomain.com/myapp/mycontroller/dummy_ajax_callback
Of course, this produces garbage results.
In the past, I thought I had read that the way to defeat this was to
do give the callback a dummy argument:
def dummy_ajax_callback(dummy=False):
or something like that. I thought it used to work, but id definitely
doesn't work, now. I get an "invalid request" from ajax and an
"invalid controller" message in firebug.
Any thoughts about how to make my ajax callbacks invisible to URL
redirection?
