Files changed (1)
-Dislayed values can be limited to only one group if you display `group settings <http://127.0.0.1:8000/settings/MyApp>`_ ::
+Dislayed values can be limited to only one group. For example, using the following url: `group settings <http://127.0.0.1:8000/settings/MyApp>`_ ::
Permissions for insert, delete or permission for longsetting are ignored and only the above-mentioned permission is used.
+ Because of the security significance of livesettings, all views in livesettings support CSRF regardless of whether or not the
If you want store sensitive information to livesettings on production site, e.g. a login password for a payment gateway to verify payments,
-it can be recommended to remove permission to livesettings at least from users which are beeing logged everyday including yourself,
+we recommend removing permissions to livesettings at least from users which are logging in everyday. The most secure method is to export the settings and disable livesettings as described below.