[Catalyst] how to confirm before deleting

Toby Corkindale toby.corkindale at strategicdata.com.au
Thu Jan 22 06:12:47 GMT 2009


Kieren Diment wrote:
> Yeah, 98% of your browsers have javascript enabled and a big chunk of 
> the remainder are bots ...
> 
> On the other hand you might want a non-javascript undo option at the 
> other end if you go that route.

Oh, and watch out for a Classic Error I saw in someone's code a little 
while ago..
They had entered a bunch of state-modifying buttons like this:
<a href="/blah/blah/$id/delete" onclick="confirm(..)"><img 
src="/static/trashcan.gif" alt="Delete"/></a>

But what happens when your site gets spidered by a search engine, that 
follows all links?

Whoops.

There's a good reason state-modification-actions should be POST (or 
rather, non-GET, if you want to go with PUT, DELETE, etc)

> On 22/01/2009, at 3:06 PM, Jonathan Rockway wrote:
> 
>> * On Wed, Jan 21 2009, Dave Howorth wrote:
>>> Paul Falbe wrote:
>>>> That works thank you very much.  Don't know how many google searchs 
>>>> I did
>>>> trying to find that out!
>>>
>>>> Rodrigo-51 wrote:
>>>>> Paul, how about a javascript confirm() box?
>>>
>>> ... and if the user has Javascript disabled? ????
>>
>> <noscript>Please enable Javascript.  It's Two Thousand Fucking 
>> Nine.</noscript>



More information about the Catalyst mailing list