Welcome Guest, Not a member yet? Register   Sign In
user session data passed to view

hello, i want to pass userdata to the view. is there anything inherently insecure or unsafe about this?

$params['userdata'] = $this->session->userdata;

$this->load->view('foo',  $params);

i think not , if you doesn't do echo on sensible data. Remember that all the process, e.g. the session data in the view is processed in the server, not in the client, so you can pass all data needed to the view, sensible or not, but it's only a security flaw if you show it( send it to the client in the rendered html ).

if i'm wrong, please correct me.

Theme © iAndrew 2016 - Forum software by © MyBB