2 Oct
2005
2 Oct
'05
3:45 p.m.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 02 Oct 2005, at 3:16 PM, Jeremy Andrews wrote:
This avoids all the problems described above, and would prevent token re-use by comment spammers. The only problem is that this solution doesn't work for forms that don't have unique id's, such as the contact form. Perhaps that's okay. (You could have an 'id' of 0 in such cases.)
all forms have unique id's in the form api. - -- Adrian Rossouw Drupal developer and Bryght Guy http://drupal.org | http://bryght.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (Darwin) iD8DBQFDP+SBgegMqdGlkasRAuiAAKDYzr5vT+Eq6+Vt1Qaspr0cbqKAhgCfU6GU a2YP8FDfPD2To7EhIhIh7JI= =Zgjp -----END PGP SIGNATURE-----