News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Adam Jensen's Blog:
Output Transformation in a Zend Framework Model Layer
April 06, 2009 @ 13:43:06

Adam Jensen has a new post to his blog today looking at a solution he's created to be able to access the raw input a user has entered.

I've run into a minor problem, and I'm not sure my solution is particularly ideal. See, the Zend_Form approach described above does a great job of implementing Chris Shiflett's Filter Input, Escape Output principle...user input is filtered for invalid HTML before it's ever saved to the model, and can then be escaped as appropriate in the view layer. But what happens if you need to be able to retrieve the user's original unfiltered input later?

While working with the raw data could be dangerous, he has created a custom model that, through the getters and setters and doing validation/sanitization and the presentation layer rather than behind the scenes. It's not ideal but he's willing to take suggestions...

0 comments voice your opinion now!
output sanitize filter transform getter setter raw user input


blog comments powered by Disqus

Similar Posts

Secunia.com: TCExam PHP Code Execution and Cross-Site Scripting

PHP Zurich User Group: Meeting March 14th, 2006 @ 18:30

Adam Jensen's Blog: Output Transformation in a Zend Framework Model Layer

DeveloperDrive.com: Common Mistakes to Avoid When Coding in PHP

DZone.com: How to remove getters and setters


Community Events

Don't see your event here?
Let us know!


video podcast voicesoftheelephpant development laravel5 api series introduction unittest release library framework opinion psr7 laravel community conference extension language interview

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework