Gábor Farkas <[EMAIL PROTECTED]> writes: > > at the end, i did the followin: > > - no javascript-visibility tricks > - the form's submit buttons are written out using document.write > - i added a <noscript> tag to warn the user to enable javascript > > this way, if javascript is disabled, the user cannot submit the form. he > can still see it, but cannot submit (so cannot break anything).
Unless they, say, save it to disk, edit it, reopen it, and submit the form. Which would be a perfectly logical thing for a user to do when presented with a trivially broken form that they legitimately want to submit. I know you know that you can't rely on client-side validation, but I just want to say, you _really_ can't rely on client-side validation. -- +----------------------------------------------------------------+ | Jason F. McBrayer [EMAIL PROTECTED] | | "If you wish to make Pythocles wealthy, don't give him more | | money; rather, reduce his desires." -- Epicurus | --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users -~----------~----~----~----~------~----~------~--~---
