I suppose holding a list of valid uuid's in session and "pop"ing them after they are used could work. Security is not my strong suit, but I don't think that would raise any issues
On Wednesday, May 30, 2012 2:57:54 PM UTC-4, Bill Seitz wrote: > > I'm trying to build up a newbie-learning app that includes lots of > cookbook stuff. I'm starting from the old 'blog' app. > https://groups.google.com/group/webpy/browse_thread/thread/7ea1c52bc19a46c1 > > I've put the app in GitHub. https://github.com/BillSeitz/webpy-blog-plus > > I've recently added support for CSRF. But I'm getting false-positives > (rejection). Can anyone figure out why? > > My notes since starting this app are at: > http://webseitz.fluxent.com/wiki/ExtendingWebpyBlogAppWithCookbookFeatures > -- You received this message because you are subscribed to the Google Groups "web.py" group. To view this discussion on the web visit https://groups.google.com/d/msg/webpy/-/Wl4JmpAPh0wJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/webpy?hl=en.
