Anyone else had a good look through the security lib in CI 2.0? |
[eluser]nelson.wells[/eluser]
It looks like the Input class was refactored to work differently. Just by looking, the Input class has been taken out of the standard libraries and brought into the core of CI. Also, it doesn't have the xss cleaning code anymore, it just handles input, not security. There is a new class, Security, which now handles the xss cleaning code, as well as new code to help prevent csrf http://en.wikipedia.org/wiki/Cross-site_request_forgery. I haven't looked in depth, but I think that is what is going on. |
Messages In This Thread |
Anyone else had a good look through the security lib in CI 2.0? - by El Forum - 04-16-2010, 08:20 AM
Anyone else had a good look through the security lib in CI 2.0? - by El Forum - 04-16-2010, 09:27 AM
Anyone else had a good look through the security lib in CI 2.0? - by El Forum - 04-16-2010, 11:44 AM
Anyone else had a good look through the security lib in CI 2.0? - by El Forum - 04-16-2010, 01:45 PM
|