Łukasz Nowak
2008-11-25 11:01:42 UTC
Hello,
What is the good and correct way[tm] to prevent invoking scripts from
URL?
I saw somewhere some kind of trick:
params: REQUEST=None, **kwargs
if REQUEST is not None:
do someting, eg. raise
Is there any "official" way to have such behaviour? Are above trick do
have any flaws? Is there any better way to prevent users from invoking
scripts by URL? Some script-based security checks to do it only by
managers for example?
Regards,
Luke
What is the good and correct way[tm] to prevent invoking scripts from
URL?
I saw somewhere some kind of trick:
params: REQUEST=None, **kwargs
if REQUEST is not None:
do someting, eg. raise
Is there any "official" way to have such behaviour? Are above trick do
have any flaws? Is there any better way to prevent users from invoking
scripts by URL? Some script-based security checks to do it only by
managers for example?
Regards,
Luke
--
?ukasz Nowak IT Specialist email at lnowak.com http://lnowak.com/
Skype: Shufla jid: shufla at jabster.pl
``Use the Source, Luke...'' ?My blog: http://shufla.rootnode.net/
?ukasz Nowak IT Specialist email at lnowak.com http://lnowak.com/
Skype: Shufla jid: shufla at jabster.pl
``Use the Source, Luke...'' ?My blog: http://shufla.rootnode.net/