News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Dan Horrigan's Blog:
Security in FuelPHP
March 10, 2011 @ 12:02:32

Dan Horrigan, one of the members of the development team for the Fuel PHP framework has a recent post to his blog of an overview of the the security features of the framework and how it handles things like input and output filtering.

There are many ways to handle security in a web application, and many things to think about. This is by no means an in-depth look on application security. It is meant to be an overview of how to use the security features included in FuelPHP.

The framework lets you set up application-wide input filtering in your configuration file, making it a nice "set it and forget it" kind of thing you don't have to include in each form. There's three types of filtering - xss_clean, htmlentities and strip_tags. For output, he mentions the "e()" method that escapes your output and strips all HTML tags to prevent XSS attacks.

0 comments voice your opinion now!
fuelphp framework security input output filter


blog comments powered by Disqus

Similar Posts

Fabien Potencier: About Symfony: Stability over Features

Jonathan Snook's Blog: CakePHP: Initial Thoughts

PHPMaster.com: Under the Hood of Yii's Component Architecture, Part 1

Fabien Potencier's Blog: Create your own framework... on top of the Symfony2 Components (part 12)

Padraic Brady's Blog: The PHPSpec 0.2.0devel API


Community Events





Don't see your event here?
Let us know!


library version community mvc update composer security symfony series package framework podcast introduction opinion release language voicesoftheelephpant tool laravel interview

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework