News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Dan Horrigan's Blog:
Security in FuelPHP
March 10, 2011 @ 12:02:32

Dan Horrigan, one of the members of the development team for the Fuel PHP framework has a recent post to his blog of an overview of the the security features of the framework and how it handles things like input and output filtering.

There are many ways to handle security in a web application, and many things to think about. This is by no means an in-depth look on application security. It is meant to be an overview of how to use the security features included in FuelPHP.

The framework lets you set up application-wide input filtering in your configuration file, making it a nice "set it and forget it" kind of thing you don't have to include in each form. There's three types of filtering - xss_clean, htmlentities and strip_tags. For output, he mentions the "e()" method that escapes your output and strips all HTML tags to prevent XSS attacks.

0 comments voice your opinion now!
fuelphp framework security input output filter


blog comments powered by Disqus

Similar Posts

iBuildings Blog: Verifying out software with OWASP ASVS

Zend Developer Zone: 30 Minutes with Active Media Architects

DevShed: Filters and Login Systems for Web Application Security

Community News: The Great Web Framework Shootout

Paul Jones' Blog: The Aura Project: Now For PHP 5.4, With Beta Releases


Community Events











Don't see your event here?
Let us know!


hhvm component install podcast package composer language code hack unittest overview release framework support application facebook symfony2 security introduction opinion

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework