Web programming and a different "type" problem

[Jon Ribbens]

In article <b8lj2q$l14$1 at newshost.accu.uu.nl>, Martijn Faassen wrote:
> Doesn't jonpy allow the Evil User to manipulate the type of your Python
> variables too? The Evil User could get rid of the '*' in the form and
> submit, right? Though I grant it looks like the code will always fail
> in that case, which is good. It's a neat idea.

Well, you answer your own question. The "*" is kept in the 'params'
mapping so when the code looks for "foo*" it wouldn't find it, which
is a situation it has to cope with anyway when a genuine user simply
selects none of the options.