Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Are URI segments "cleansed"?
Are URI segments "cleansed"?
  • El Forum
    Guest
  •  
#1
01-21-2011, 08:41 AM

[eluser]Wayne Smallman[/eluser]
Hi guys!

I've been poking around in the documentation, the web and this forum to find out if URI segments are "cleansed" before they're called from within controllers et cetera.

So far, I've not found anything that's helped.

Right now, I have:

Code:
// clean the URI segment
$uri_segment['tag'] = urldecode($this->security->set_variable_string($this->uri->segment(3)));
Where the function being called is:
Code:
function set_variable_string ($string_data) {

    return htmlentities($string_data, ENT_QUOTES, 'UTF-8');

} // end function set_variable
Problem is, I've got to do that all the way throughout the application, unless this process is being handled automatically.

Any ideas?
  • El Forum
    Guest
  •  
#2
01-21-2011, 02:31 PM

[eluser]InsiteFX[/eluser]
It filter segments for malicious characters.

See the URI Class code.

InsiteFX
  • El Forum
    Guest
  •  
#3
01-21-2011, 03:00 PM

[eluser]Wayne Smallman[/eluser]
InsiteFX, thanks for the reply!

That'll save me a lot of extra needless coding.




Theme © iAndrew 2016 - Forum software by © MyBB