Welcome Guest, Not a member yet? Register   Sign In
Once the model is loaded by the controller all model methods are exposed to view
#5

As in normal circumstances you won't execute outputted strings, so users won't be able to add comments like '<?php $this->model->naughtyCall(); ?>'.

That leaves just developers, who have access to PHP code and would be able to write in these calls.

If you use Git, it's fairly easy to browse through changes and verify what they have done.

But if you are afraid they would do stuff like that and you don't trust them to supply code, you might need new more trustworthy developers.
Reply


Messages In This Thread
RE: Once the model is loaded by the controller all model methods are exposed to view - by Pertti - 12-12-2018, 01:46 AM



Theme © iAndrew 2016 - Forum software by © MyBB