News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Michael Girouard's Blog:
FIEO with PHP 5 Interceptors
November 08, 2007 @ 08:41:00

Michael Girouard has a post on his blog about something that's becoming more and more wide-spread in the PHP community (thankfully) - filtering input from users and escaping the output to ensure the safety of your application.

The idea itself is simple. When data comes into your application, it must be filtered prior to it actually being used for any reason. This means all data. Form values, URL values, and yes, even the values in the forever useful $_SERVER superglobal. [...] Before leaving your application, data should be properly escaped with the specific output medium in mind.

Previously he showed how, using an interceptor method in PHP5, you could build "collections of data". He uses the same sort of method here, appling custom filters to the data based on the output call. Code is included for both the filtering interface and two example filters - one for SQL and the other for HTML.

You can also grab the code if you just want to play with that.

0 comments voice your opinion now!
fieo php5 interceptor filter input escape output fieo php5 interceptor filter input escape output


blog comments powered by Disqus

Similar Posts

Nefarious Designs: Object-Oriented PHP Part 4: PHP5's Improved Features

Martynas Jusevicius' Blog: PHP 5 features: Class autoloading

Zend Developer Zone: Book Review: Object-Oriented Programming with PHP5

Nexen.net: PHP 4 and PHP 5 are in a boat : from will to reality

Community News: Official Press Release on Zend PHP5 Certification


Community Events





Don't see your event here?
Let us know!


series deployment list release tips community framework podcast laravel symfony developer api zendserver language bugfix conference library interview introduction voicesoftheelephpant

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework