Login

02-12-2010, 06:41 AM

[eluser]Neeraj Kumar[/eluser]
Hi all,

Lately I have seen an urge of developing a CMS based on CI. I have also found some CMSs online based on CI. They all are using Modules

Anyways, What I would like to know is that how can one restrict the access to CI native resources. i.e how can one make sure that written third-party modules are not allowed to use native CI functions and are only allowed to use CMS's functions.

Thing that is concerning me is the security, obviously!!

Refer to image I have attached, It'll give you guys a better perspective....

02-12-2010, 08:34 AM

[eluser]Sbioko[/eluser]
I also had an idea to do this in my CMS :-) Try using preg_match or strpos for searching the third-party modules for using the native CI functions. But, one question: what functions you want to restrict?

02-12-2010, 09:06 AM

[eluser]Neeraj Kumar[/eluser]
May be restricting direct access to database class. There are other things also.

But i think your solution is not as useful as it seems you know... also using regEx will enormously slow down the execution time.

02-12-2010, 09:07 AM

[eluser]Sbioko[/eluser]
I know, strpos maybe? :-)

02-13-2010, 06:32 PM

[eluser]Neeraj Kumar[/eluser]
bump... neone???