Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Libraries & Helpers jQuery form validation using CI back-end rules
jQuery form validation using CI back-end rules
  • El Forum
    Guest
  •  
#1
03-05-2011, 06:19 AM

[eluser]steelaz[/eluser]
I created solution that does front-end validation using back-end validation rules. No more writing separate validation routines and you get the same native CI validation error messages on front-end.

Blog post (how it works)

Source code

Demo
  • El Forum
    Guest
  •  
#2
06-26-2011, 08:19 AM

[eluser]steelaz[/eluser]
Updated the code to add CI "matches" rule - demo
  • El Forum
    Guest
  •  
#3
06-26-2011, 08:50 AM

[eluser]eggzy[/eluser]
Nice work man, looks good
  • El Forum
    Guest
  •  
#4
06-27-2011, 09:54 PM

[eluser]ipsod[/eluser]
Good idea.
  • El Forum
    Guest
  •  
#5
04-11-2012, 11:33 PM

[eluser]theshiftexchange[/eluser]
I just wanted to come back and /bump this thread - and say thanks again to Steelaz - this is an awesome addon - which has saved me so much time, and greatly improved the logic and cleanness of my website code.

Thanks!!
  • El Forum
    Guest
  •  
#6
04-12-2012, 09:40 AM

[eluser]CroNiX[/eluser]
I do the same thing except I created a new method in MY_Form_Validation to return the validation error ARRAY ($_error_array), so I can highlight the individual error fields when it gets returned to the ajax callback as a json object. (as opposed to just using validation_errors() which returns a single string with all errors)
  • El Forum
    Guest
  •  
#7
04-18-2012, 05:23 AM

[eluser]noname525[/eluser]
vv
  • El Forum
    Guest
  •  
#8
04-20-2012, 06:37 AM

[eluser]theshiftexchange[/eluser]
question: has anyone here been able to get this to work when CSRF is turned on? Mine stops working - and I'm not 100% sure how to fix it....
  • El Forum
    Guest
  •  
#9
04-20-2012, 07:29 AM

[eluser]theshiftexchange[/eluser]
I needed a quick fix for this - so I decided that a solution would be to "ignore" the CSRF check for the jquery validation calls.

There is no (obvious) security risk I can see here, because the validation rules are public knowledge anyway (since we send them as text to the browser).

To achieve this, I extended the Security class, and did a check for the "welcome/remote" URI. For me, this is my generic path that all my jquery validation goes to. Just change "welcome/remote" to wherever your remote() function is.

Code:
<?php
/**
* A fix to ignore CSRF tokens for the jquery_validation
*
*/

class MY_Security extends CI_Security
{
    public function __construct()
    {
        parent::__construct();

    }
  
public function csrf_verify()
{
  // Firstly - manually get our controller/method
  // We cant use the CI instance yet

  $uri = $_SERVER['REQUEST_URI'];
  if (strpos($uri, $_SERVER['SCRIPT_NAME']) === 0)
  {
   $uri = substr($uri, strlen($_SERVER['SCRIPT_NAME']));
  }
  elseif (strpos($uri, dirname($_SERVER['SCRIPT_NAME'])) === 0)
  {
   $uri = substr($uri, strlen(dirname($_SERVER['SCRIPT_NAME'])));
  }
  

  // Check if this is a jquery remote check
  $pos = strrpos ($uri, "welcome/remote");

  if ($pos === false)
  {
   // No? Then complete the csrf check as normal
   return parent::csrf_verify();

  }
  else
  {
   // Yes? Then just ignore it as if nothing happened
   return $this;
  }  
}
}


If anyone can see any flaws/security issues with this - I'd be keen to hear it...
  • El Forum
    Guest
  •  
#10
04-20-2012, 09:05 AM

[eluser]CroNiX[/eluser]
Just pass the CSRF token. Much better than disabling security.




Theme © iAndrew 2016 - Forum software by © MyBB