Django Book 翻译
菜单>:
TOC
返回
原文:
That leaves ``POST`` requests. The second step is to give each ``POST`` ``
`` a hidden field whose value is secret and is generated from the users session ID. Then, when processing the form on the server side, check for that secret field and raise an error if it doesnt validate.
翻译:
该技术没有考虑 ``POST`` 请求。第二步就是给所有 ``POST`` 的 ``
`` 一个 隐藏字段,它的值是保密的并根据用户进程的 ID 生成。这样,从服务器端访问表单时,可以检查该保密的字段,不吻合时可以引发一个错误。
备注:
译者: