CakePHP Security component

04Nov09

Advanced: http://mooncakephp.wordpress.com/2009/11/06/續-security-component/

今天遇到了一個特別的 bug, 在一個 add 頁面, page load 沒有問題,
但submit 的時候卻白畫面, 有進過 controller 的 beforeFilter(),
但沒有進過controller 的 add.
答案是 Security compoent enable 了, 因為沒有使用$form->end()
令頁面沒有提交一組 hidden 的 hash code, CakePHP 以為是安全問題, beforeFilter 之後就 filter 了….

cookbook:

When using the Security Component you must use the FormHelper to create your forms. The Security Component looks for certain indicators that are created and managed by the FormHelper (especially those created in create() and end()).

Like this:

Be the first to like this post.

Filed under: Uncategorized | Leave a Comment

No Responses Yet to “CakePHP Security component”

Feed for this Entry Trackback Address

Leave a Comment

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email （必須） (Address never made public)

Name （必須）

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

取消

Connecting to %s

Categories
- Basics (4)
- Blogs (2)
- Intermediate (3)
- Uncategorized (6)
tag cloud

admin apache bake CakePHP checkbox Code generation Exception form Gdata Model routing Security Component setup Validate Virtualhost youtube Zend
Recent Posts
About
- About
comments
- joetsuihk on Admin pages / Admin Routing
- kiang on Admin pages / Admin Routing