On Monday, 4 February 2013 15:06:18 UTC+1, Aymeric Augustin wrote: > > Hi Luke, > > This sounds like a good compromise between security and usability. >
I just want to add another voice of support for Option 3 to this thread. I'm one of the developers for a large site, with ~40 apps, that has grown organically over time. Fixing all of them to have "fields" properly defined will be a lot of work, but it's well worth it. Accidentally opening up your models for writing is FAR to easy to do accidentally as things stand right now. I understand why this started on the security list, this is serious. -- You received this message because you are subscribed to the Google Groups "Django developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/django-developers?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
