I want to know best practice about CI3 security. |
From http://www.codeigniter.com/user_guide/ge...-filtering
Quote:XSS filtering should only be performed on output. Filtering input data may modify the data in undesirable ways, including stripping special characters from passwords, which reduces security instead of improving it. Passing TRUE to the second parameter of $this->input->post() passes your input through the XSS filter, which should not be done. On output, you can pass your data (or individual values from your data) through $this->security->xss_clean() as needed. |
Messages In This Thread |
I want to know best practice about CI3 security. - by Vimal - 05-06-2015, 12:07 AM
RE: I want to know best practice about CI3 security. - by davidgv88 - 05-06-2015, 04:03 AM
RE: I want to know best practice about CI3 security. - by GrigoreMihai - 05-06-2015, 06:15 AM
RE: I want to know best practice about CI3 security. - by davidgv88 - 05-06-2015, 08:16 AM
RE: I want to know best practice about CI3 security. - by mwhitney - 05-06-2015, 08:35 AM
|