8000 [Form] read_only is editable by hackers · Issue #10533 · symfony/symfony · GitHub
[go: up one dir, main page]

Skip to content
[Form] read_only is editable by hackers #10533
Closed
@Bup3

Description

@Bup3

I have a problem with the read_only fields...

For my form I need a read_only field which the user cant edit.
But the user should could select the text in the input.

If I remove the read_only attribute by Firebug or other plugin I could modify the value and the values would be accepted.

In \Symfony\Component\Form\Form::isDisabled I see that it would be only checked if the field is "disabled". -> Then the input would be ignored if I remove the disabled attribute!

👍 Could you please fix that problem? 👍
ReadOnly != Editable

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions

      0