[Radiant] [ANN] Radiant 0.6.5 Release Candidate 1
Aitor Garcia Rey
aitor at linkingpaths.com
Mon Mar 3 15:25:49 CST 2008
On Mon, Mar 3, 2008 at 9:48 PM, Sean Cribbs <seancribbs at gmail.com> wrote:
> Ok, I get it now. However, this seems like something best left for
> 0.6.6 (which should be a shorter turnaround to release). We will be
> normalizing all of the admin controllers to be RESTful, and need to
> address the correct verbs anyway.
Ok.
> Also, be aware that simply loading
> "/admin/pages/remove/1" will give you a confirmation page.
Oops... I forgot the confirmation page... anyway the CSRF issue works
with POST actions.
> We don't
> currently have any actions that do something destructively via GET.
But we have actions that don't change state done via POST (like the
get the childs action cited priorly), which is a misleading way to
perform these actions, specially with this CSRF issue and the technic
used by the rails helpers.
--
Kind Regards,
Aitor Garcia
Cofounder - Linking Paths
http://www.linkingpaths.com
More information about the Radiant
mailing list