Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived General Discussion The URI you submitted has disallowed characters?
The URI you submitted has disallowed characters?
  • El Forum
    Unregistered
  •  
#11
05-24-2009, 03:27 PM

[eluser]ownersbox[/eluser]
Thank you for the link. I don't think I understand how to properly use the routes

if I want my link to be mydomain.com/verify/EMAIL/HASH

I added this route: $route['verify/(:any)/(:any)'] = "verify/";

But I still get the 404, what part did I misunderstand?

I also tried: $route['verify/(:any)'] = "verify/"; and $route['verify/(:any)'] = "verify";
  • El Forum
    Unregistered
  •  
#12
05-24-2009, 03:32 PM

[eluser]Dam1an[/eluser]
Based on the way I suggested earlier, this is the route I would use
Code:
$route['verify/(:any)/(:any)'] = 'account/verify/$1/$2';

// And then in the account controller, add
function verify($email, $hash) {
  // verify the user
}
  • El Forum
    Unregistered
  •  
#13
05-24-2009, 07:59 PM

[eluser]ownersbox[/eluser]
Thanks for all your help, your method worked then I ran in to another issue where a dot was being converted to an underscore and I found another thread you were part of showing me how to solve that... Thanks again

http://ellislab.com/forums/viewthread/114218/#578644
  • El Forum
    Unregistered
  •  
#14
05-25-2009, 01:18 AM

[eluser]Dam1an[/eluser]
Glad its all working now Smile
(Also, it appears I appear in too many threads Tongue)
  • El Forum
    Unregistered
  •  
#15
05-25-2009, 10:15 PM

[eluser]The Spider[/eluser]
Hi,
What will happen if we give $config[‘permitted_uri_chars’]='' in config.php?
I have to search for keywords entered in a text box. The problem is that I am getting the message "The URI you submitted has disallowed characters." whenever the keyword contain single quote, + sign etc.
When I edited $config[‘permitted_uri_chars’]='', everything looks fine.
Can anyone tell me, is there any problem in doing this?

Thanks in advance.
  • El Forum
    Unregistered
  •  
#16
05-26-2009, 07:41 AM

[eluser]ownersbox[/eluser]
it becomes a security issue, allowing all characters would provide a way to try to execute from the url

Why not add characters you need to the default setting
  • El Forum
    Unregistered
  •  
#17
05-26-2009, 07:45 AM

[eluser]Dam1an[/eluser]
I think the comment in the config files is clear enough that its not a good idea to allow all
Quote:/*
|--------------------------------------------------------------------------
| Allowed URL Characters
|--------------------------------------------------------------------------
|
| This lets you specify with a regular expression which characters are permitted
| within your URLs. When someone tries to submit a URL with disallowed
| characters they will get a warning message.
|
| As a security measure you are STRONGLY encouraged to restrict URLs to
| as few characters as possible. By default only these are allowed: a-z 0-9~%.:_-
|
| Leave blank to allow all characters -- but only if you are insane.
|
| DO NOT CHANGE THIS UNLESS YOU FULLY UNDERSTAND THE REPERCUSSIONS!!
|
*/
$config['permitted_uri_chars'] = 'a-z 0-9~%.:_\-';
  • El Forum
    Unregistered
  •  
#18
05-26-2009, 10:01 PM

[eluser]The Spider[/eluser]
Ok. Thanks.
Suppose I want to add '(single quotes), "(double quotes) and + sign. How can I edit the default setting to add these?




Theme © iAndrew 2016 - Forum software by © MyBB