sqlite - django and bank transfer system javascript injection using chrome extension -
for academic course of cryptography , security, have create basic system bank transfers.
i decided use django, gives me authentication , database without effort.
the task create chrome extension change receiver bank account number send server, user see 1 provided in transfers history. both, server , user, should think correct when have different numbers.
my concern how approach this. when database (default sqlite3) created , edited using django (hence python) how fiddle using javascript in chrome extension.
my database model:
class transfer(models.model): user = models.foreignkey(settings.auth_user_model, editable=false) acc_num_from = models.charfield('from account number', max_length=28) amount = moneyfield('transfer amount', max_digits=12, decimal_places=2, default_currency='pln') acc_num_to = models.charfield('to account number', max_length=28) rec_name = models.charfield('receiver name', max_length=120) rec_street = models.charfield('street', max_length=64) rec_pcode = models.charfield('postcode', max_length=6) rec_city = models.charfield('city', max_length=32) title = models.textfield('title', max_length=140) post_time = models.datetimefield('transfer date', auto_now=false, auto_now_add=true)
should fiddle form? there again problem, generated template in django.
any useful, 1st contact django server , breaking wrote work.
Comments
Post a Comment