[Erp5-dev] limiting/preveneting invoking scripts by URL - any good and correct way?
Łukasz Nowak
email at lnowak.com
Tue Nov 25 12:01:42 CET 2008
Hello,
What is the good and correct way[tm] to prevent invoking scripts from
URL?
I saw somewhere some kind of trick:
params: REQUEST=None, **kwargs
if REQUEST is not None:
do someting, eg. raise
Is there any "official" way to have such behaviour? Are above trick do
have any flaws? Is there any better way to prevent users from invoking
scripts by URL? Some script-based security checks to do it only by
managers for example?
Regards,
Luke
--
Łukasz Nowak IT Specialist email at lnowak.com http://lnowak.com/
Skype: Shufla jid: shufla at jabster.pl
``Use the Source, Luke...'' My blog: http://shufla.rootnode.net/
More information about the Erp5-dev
mailing list