News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Dan Horrigan's Blog:
Security in FuelPHP
March 10, 2011 @ 12:02:32

Dan Horrigan, one of the members of the development team for the Fuel PHP framework has a recent post to his blog of an overview of the the security features of the framework and how it handles things like input and output filtering.

There are many ways to handle security in a web application, and many things to think about. This is by no means an in-depth look on application security. It is meant to be an overview of how to use the security features included in FuelPHP.

The framework lets you set up application-wide input filtering in your configuration file, making it a nice "set it and forget it" kind of thing you don't have to include in each form. There's three types of filtering - xss_clean, htmlentities and strip_tags. For output, he mentions the "e()" method that escapes your output and strips all HTML tags to prevent XSS attacks.

0 comments voice your opinion now!
fuelphp framework security input output filter


blog comments powered by Disqus

Similar Posts

Knut Urdalen's Blog: Try Yii Framework for your next large-scale web 2.0 application...

Jacob Santos' Blog: Zend Framework: Hackish Include Path Solution

Paul Jones' Blog: Interview Tip: Avoid Mentioning PHP Frameworks

Abou Kone's Blog: Set up JSON action output in CakePHP 1.3

HipHop VM Blog: Compatibility Update


Community Events





Don't see your event here?
Let us know!


api series introduction zendserver code tips community application interview version developer framework laravel deployment release podcast list conference development language

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework