News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Dan Horrigan's Blog:
Security in FuelPHP
March 10, 2011 @ 12:02:32

Dan Horrigan, one of the members of the development team for the Fuel PHP framework has a recent post to his blog of an overview of the the security features of the framework and how it handles things like input and output filtering.

There are many ways to handle security in a web application, and many things to think about. This is by no means an in-depth look on application security. It is meant to be an overview of how to use the security features included in FuelPHP.

The framework lets you set up application-wide input filtering in your configuration file, making it a nice "set it and forget it" kind of thing you don't have to include in each form. There's three types of filtering - xss_clean, htmlentities and strip_tags. For output, he mentions the "e()" method that escapes your output and strips all HTML tags to prevent XSS attacks.

0 comments voice your opinion now!
fuelphp framework security input output filter


blog comments powered by Disqus

Similar Posts

RefreshinglyBlue Blog: PHP vs Ruby - Practical Language Differences

Sebastian Bergmann's Blog: The Cost of Test Isolation (and other PHPUnit Features)

The Bakery: PremierMarinas.com, ScienceHack.com and an iPhone App

International PHP Magazine: Poll Question: What Do You Look for in Frameworks?

DevShed: Enforcing Object Types in PHP - Filtering Input Objects in PHP 4


Community Events





Don't see your event here?
Let us know!


laravel list symfony opinion version voicesoftheelephpant install extension unittest podcast configure language conference introduction community composer series interview api release

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework