Menu
▾
▴
Re: [phpesp-dev] code changes to phpesp
|
From: Franky V. L. <lie...@te...> - 2008-03-16 19:43:17
|
On Sun, 16 Mar 2008 14:40:53 -0400 Matthew Gregg <mat...@gm...> wrote: > I'm not sure of the status of all of Bishops changes. If all of his > changes are in a completed state then maybe a 2.1 beta should be > released. Where does that RID show up? the RID shows up in every html page rendered. So one could save the html, change the rid and post again, and it would probably overwrite another person their response. Haven't tested it though ... but anyway: putting the RID variable in the session would make it more secure to begin with. I already did the changes, but they need more testing first, since it could pose problems when people are allowed more than one response. The rid should be 0 the first "page" of the survey, and that would solve these problems ... Franky |
