On Monday, March 28, 2016 at 3:33:20 PM UTC-4, Niphlod wrote: > > nothing in SQLFORM, as it doesn't accept a user_signature argument ... > it's SQLFORM.grid that does. >
And in the context of the grid, it means each URL that the grid generates (e.g., edit/delete links) will include a digital signature unique to the combination of the URL path and the currently logged in user -- this will prevent users from attempting unauthorized actions via the grid. Anthony -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
