You would suggest you do this instead db.table.email.writable=False
in the controller, before defining the form. Setting the field readonly in the view may still allow a malicious attacker to tamper with the field value. On Jul 6, 1:12 am, Luis Goncalves <[email protected]> wrote: > I found the answer searching through the group posts: > > form.element(_name='email')['_readonly']=True > > although this doesn't seem to be documented in the manual, > and even looking through the gluon directory (and grepping for _readonly ) > didn't reveal anything. > > Would this have been obvious to someone more proficient with web2py (I've > only been using it for about a month)? > > thx! > > Luis.
