Can I restrict the type of php functions and variables usable in a view?

Can I restrict the type of php functions and variables usable in a view?

El Forum
Unregistered

01-14-2008, 01:31 PM

[eluser]Michael Wales[/eluser]
I wouldn't let them use any PHP at all. I would have them use a templating language (CI has one built-in) and then parse their input.

There are just to many security holes if you let them use PHP. You will never block them from everything (and, depending on your target audience, your likely to find your users are more comfortable with the template language than with PHP).

Messages In This Thread

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 01:27 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 01:31 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 01:48 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 02:03 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 02:06 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 02:18 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 02:29 PM

Can I restrict the type of php functions and variables usable in a view? - by El Forum - 01-14-2008, 02:33 PM