Yes, Anthony now with user_signature = True prevents tampering of urls
generated by smartgrid.
This is when I use auth and signup and then call the grid.
But in my app I am using custom login form with user credentials from a
legacy table.
Can I achieve the same result with custom login form?
As of now in login form I set session.logged_id = True if credentials are
OK.
In db.py I have this function.
def check_logged_in(callee):
def wrapper():
if session.logged_in == None:
session.flash = 'Please login.'
redirect(URL('login', 'login'))
else:
return callee()
return wrapper
and in controller I do this
@check_logged_in
def new_contract():
With this set up if I set user_signature = True in grid it does not allow
editing and inserting. It allows only viewing.
How to achieve the same effect as auth using my check_logged_in function.
Thank you for the help.
Regards.
--
Resources:
- http://web2py.com
- http://web2py.com/book (Documentation)
- http://github.com/web2py/web2py (Source code)
- https://code.google.com/p/web2py/issues/list (Report Issues)
---
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to web2py+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
