| URI Segment Database Safety |
[eluser]nullsys[/eluser]
Hi! Thanks for the reply. I'm a little more concerned with safety, when passing the user generated data directly into Active Record, rather than what else I can do with it. Also, you shouldn't use is_numeric() to check ID's. is_numeric() allows much more than just what would you expect for a database ID. For example: "4.4" would cause an error, but still return TRUE from is_numeric(). I suppose an alternative method would be to use Codeigniter's form_validation, but I don't want to load up libraries just to check an ID. However, I'm more worried about passing a URI string of data to Active Record, does it require any extra security measures, or will Active Record handle it? PS: I've been reading http://ellislab.com/codeigniter/user-gui...urity.html but I just wanna be sure 
|
| Messages In This Thread |
|
URI Segment Database Safety - by El Forum - 06-28-2012, 04:17 PM
URI Segment Database Safety - by El Forum - 06-28-2012, 08:37 PM
URI Segment Database Safety - by El Forum - 06-29-2012, 03:28 AM
URI Segment Database Safety - by El Forum - 06-29-2012, 04:52 AM
URI Segment Database Safety - by El Forum - 06-29-2012, 05:10 AM
|
