News Feed
Jobs Feed
Sections




News Archive
Adam Jensen's Blog:
Output Transformation in a Zend Framework Model Layer
by Chris Cornutt April 06, 2009 @ 13:43:06

Adam Jensen has a new post to his blog today looking at a solution he's created to be able to access the raw input a user has entered.

I've run into a minor problem, and I'm not sure my solution is particularly ideal. See, the Zend_Form approach described above does a great job of implementing Chris Shiflett's Filter Input, Escape Output principle...user input is filtered for invalid HTML before it's ever saved to the model, and can then be escaped as appropriate in the view layer. But what happens if you need to be able to retrieve the user's original unfiltered input later?

While working with the raw data could be dangerous, he has created a custom model that, through the getters and setters and doing validation/sanitization and the presentation layer rather than behind the scenes. It's not ideal but he's willing to take suggestions...

0 comments voice your opinion now!
output sanitize filter transform getter setter raw user input


blog comments powered by Disqus

Similar Posts

Dan Horrigan's Blog: Security in FuelPHP

Matthew Turland's Blog: Scaling Zend_Form

DevShed: Enforcing Object Types in PHP - Filtering Input Objects in PHP 4

Zend Developer Zone: PHP Built in Input filtering

Brian Moon's Blog: Phorum 5.2.0-alpha released


 Community Events











Don't see your event here?
Let us know!

series introduction zendframework2 interview unittest conference database community phpunit symfony2 podcast framework functional release rest development language testing opinion usergroup

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework