Welcome Guest, Not a member yet? Register   Sign In
Search Results
    Thread: Lost about XSS protection
Post: RE: Lost about XSS protection

@Narf THANKS. Great answers, clear, efficient. All is ok now for me. And thanks again for CI. Regards Zoé
7,269 Views
5 Replies
12-14-2016, 11:07 AM
zoé
    Thread: Lost about XSS protection
Post: RE: Lost about XSS protection

UP. I realize that if we have to sanitize output in Controller, when i have multiple records i have to loop foreach record and then foreach datas in the array or in the objet for apply xss_clean. Hu...
7,269 Views
5 Replies
12-14-2016, 09:23 AM
zoé
    Thread: Lost about XSS protection
Post: RE: Lost about XSS protection

wishmaster Wrote: (12-14-2016, 08:55 AM) -- Hmmm.... My opinion says: + puts unmodified data to the DB + xss_clean on every output datas in controllers (e.g. when user sends page and this page ret...
7,269 Views
5 Replies
12-14-2016, 09:14 AM
zoé
    Thread: Lost about XSS protection
Post: Lost about XSS protection

Hi, as xss_clean in Input is deprecated, and as it seems that it's a best practice to Validate Input and Sanitize Output, i'm in trouble with the correct way in CI (meaning in MVC structure). Hy...
7,269 Views
5 Replies
12-14-2016, 08:32 AM
zoé
    Thread: xss_clean in CI 3
Post: RE: xss_clean in CI 3

casa Wrote: (04-05-2015, 11:32 PM) -- to answer concisely and effectively : $config['global_xss_filtering'] = TRUE is deprecated and just to assure interdependence between versions of CI. Instead Us...
49,650 Views
0 Replies
12-14-2016, 07:32 AM
zoé
    Thread: Extending cache library
Post: Extending cache library

Hi, trying to extend some methods of the Cache library, creating a MY_Cache.php in the application library folder. But his file seems to be ignored. any idea. The deal is for example to alert admin...
3,846 Views
2 Replies
11-03-2016, 09:13 AM
zoé
    Thread: csrf error 500 with cookies disabled in browser
Post: RE: csrf error 500 with cookies disabled in browse...

found a dirty (?) solution, putting this in config.php instead of in a hook : PHP Code: -- if(!empty($_POST)) { if(!isset($_COOKIE[$config['sess_cookie_name']])) { // REDIRECT TODO }...
2,490 Views
1 Replies
02-07-2016, 04:14 PM
zoé
    Thread: csrf error 500 with cookies disabled in browser
Post: csrf error 500 with cookies disabled in browser

Hi, When cookies are disabled in browser, doing a controller post with csrf return a 500 error, which seems to be logical. But i can't find where and when in the flow i can catch that cookies are dis...
2,490 Views
1 Replies
02-07-2016, 11:39 AM
zoé

Theme © iAndrew 2016 - Forum software by © MyBB