Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter Model-View-Controller defined('BASEPATH') OR exit('No direct script access allowed');
defined('BASEPATH') OR exit('No direct script access allowed');
  • Offline imabot
    Member
  • ***
  • Posts: 69
    Threads: 25
    Joined: Oct 2018
    Reputation: 0
#3
10-17-2018, 12:51 PM
(This post was last modified: 10-17-2018, 12:51 PM by imabot.)

(10-17-2018, 12:22 PM)dave friend Wrote: The line exists to make sure the file is being used in a CodeIgniter environment. So I'd say the answer is it goes in any file where that is true. Controllers, Models and most other files that define a "class" would probably fit that description. Perhaps in views if they use CI classes, otherwise it's not necessary.

Perfect answer, that's clear, thank you.

I'm still wondering why this line is mandatory. I don't see any security breach if the line is not added. 

How could a malicious user access to something ? PHP script will return an empty page and classes or functions can't be called from an external website. Am I missing something ?
Reply


Messages In This Thread
RE: defined('BASEPATH') OR exit('No direct script access allowed'); - by imabot - 10-17-2018, 12:51 PM



Theme © iAndrew 2016 - Forum software by © MyBB