PEAK XOOPS - un-well-known(?) usage of Smarty modifier (3)

| PHP | Site News | XOOPS |

XOOPS

XOOPS : un-well-known(?) usage of Smarty modifier (3)

Poster : GIJOE on 2006-07-11 04:52:42 (9973 reads)

You should know $smarty->security.
When this setting is on, the feature of "function modifier" will be disabled other than written in $smarty->security_settings['MODIFIER_FUNCS']

In Smarty's code:


     * This enables template security. When enabled, many things are restricted
     * in the templates that normally would go unchecked. This is useful when
     * untrusted parties are editing templates and you want a reasonable level
     * of security. (no direct execution of PHP in templates for example)

I don't think so.
Because you should not allow to edit your templates by "untrusted parties" at all.

I think this limitation is almost non-sense.

0 comments

un-well-known(?) usage of Smarty modifier (4) (2006-07-12 05:03:13)
un-well-known(?) usage of Smarty modifier (2) (2006-07-10 06:26:44)
un-well-known(?) usage of Smarty modifier (1) (2006-07-09 17:53:50)

Comments list

View more comments...

Lost Password?

Register now!