[pLog-svn] r6086 - in plog/branches/lifetype-2.0-csrf: class/action/admin class/data class/data/validator templates/admin

Reto Hugi plog at hugi.to
Fri Nov 30 15:21:03 EST 2007


On 11/30/2007 07:46 PM, Oscar Renalias wrote:
> It might be the hardest, but it's also the most needed one as the UI
> in 2.0 relies heavily on Ajax...

I know, I know... :)

> How about an AdminRequestGenerator class? It doesn't have to do much,
> just provide 'admin.php?nonce=XXX' and let the template do the rest.
> But modifying all admin templates is indeed a bit of work.

Hmmm, I like this Idea, but does the current admin interface make use of
any requestgenerator class at all? I only find links in templates
looking like href="?op=actionfoobar&someParameter=somevalue" etc.
sometimes even admin.php is "hard coded" into the templates.

So, do you suggest creating an adminrequestgerator, inheriting from
rawrequestgenerator and rewriting all admin views/templates to generate
their urls through this class? that would be consistent but not really
less work to do...

Can you please explain what you've in mind?

reto



More information about the pLog-svn mailing list