Zend Framework and magic quotes

Zend <a href= Framework & Magic Quotes">it is worth noting that with the release of php 6 this article is not relevant, and yet...

Anyone who has experience with php, probably knows or has heard about the Directive "magic_quotes_gpc"(magic quotes). If flag Directive is set to "On", the automatic escaping of data passed in the $_GET, $_POST, $_COOKIE(and hints abbreviation gpc at the end of directives).

When designing a website on Zend Framework e one of the requirements is off "magic_quotes_gpc". The thing is that Zend Framework itself screens the data and when the Directive "magic_quotes_gpc" is double-escaped, which is not good and beautiful. Problem would not be so acute if all hosts were given the right to change the value of "magic_quotes_gpc". I have repeatedly encountered this problem and found in my opinion a quite elegant solution.



In that case, when the server Directive "magic_quotes_gpc" is strictly set to "On", we will connect the small plug to avoid double-escaping:

/**
* the Plugin removes the shielding.
*
* Used in cases when the server is prohibited to turn off magic_quotes_gpc.
*
* @category Zend_Controller_Plugin
*/
class Singular_Controller_Plugin_Stripmagicquotes extends Zend_Controller_Plugin_Abstract
{
/**
* Called before Zend_Controller_Front enters a dispatch loop.
*
* @param Zend_Controller_Request_Abstract $request
* @return void
*/
public function dispatchLoopStartup(Zend_Controller_Request_Abstract $request)
{
/** included Check if the magic_quotes_gpc Directive */
if (get_magic_quotes_gpc()) {
/** Fetch the parameters */
$params = $request->getParams();
/** Recursively use the method of "exStripSlashes" to each element of the array */
array_walk_recursive($params, array($this 'exStripSlashes'));
/** Set the processed options */
$request- > setParams($params);
}
}

/**
* Removes the escaping characters.
*
* @param mixed $value
* @param mixed $key
* @return void
*/
private function exStripSlashes(&$value, $key)
{
/** Remove the escaping characters */
$value = stripslashes($value);
}
}

* This source code was highlighted with Source Code Highlighter.


Don't forget to rename the class name according to Convention framework and register a plugin:
/** Get the instance of the front controller */
$front = Zend_Controller_Front::getInstance();
/** Register the plugin */
$front- > registerPlugin(new Singular_Controller_Plugin_Stripmagicquotes());

* This source code was highlighted with Source Code Highlighter.


Thank you for your attention, have a good day.
Article based on information from habrahabr.ru

Комментарии

Отправить комментарий

Популярные сообщения из этого блога

Performance comparison of hierarchical models, Django and PostgreSQL

Изображение
Good day, dear readers. Today's article will be devoted to the comparison of models of working with hierarchical data in PostgreSQL via Django app. In the article I specifically do not use a clean implementation in the database, because I'm interested in is performance in an environment close to combat. All tests were performed on my data and results are relevant for this data on your data the result may differ from that obtained in the article. Model implementation of the hierarchical structures in the database For working with such structures in PostgreSQL you can use the following modely : the Adjacency model (AM) — model, when the column is stored parent; the Nested Sets (NS) model when paired column stores the range of all sub-elements; the Materialised Path model (MP) model, when the column is stored the full path to the element. Also details about the implementation of hierarchical structures in a relational database, you can read here . To imp...
Далее...

Transport Tycoon Deluxe / Emscripten part 2

Изображение
Transport Tycoon (Transport tycoon) is pretty old, but still enjoyable, especially the maniacs, the game is in the genre of RTS. /.../ There is also OpenTTD, outdoor product manyatta iPhoto, resulting from the game can not be distracted even in the toilet and underground, setting her on the Communicator or PDA. lurkmore I can honestly say: I killed a huge amount of time playing Transport Tycoon Deluxe. I'm just a fan of this game. So when on Habre the article appeared about how the guys from mozilla have ported Doom, I hit on the idea – to migrate one of my favorite games here on the Internet. By the way, the article was scarce, but I learned the main thing – the porting can be done using emscripten . Since the inception of the thought of the possibility of such a project was not less than a year (my first attempt crashed on the rocks of misunderstanding). And now I'm in a hurry to please you all: I did it! Now to sit ass playing TTD you can be located anywhere con...
Далее...

Automatic connection of networked MFPs with scanning capabilities [Part 1]

Изображение
HP LaserJet 1522, 1536, 3052/3055, 300/400 Color... I think many system administrators are known is described in the header of the MFU, they differ, first and foremost, not a very comfortable setting and that have had a bad reputation. Once, copying to another computer through a narrow channel package fullsolution for an MFP, weighing about 300 megabytes, the idea is to disassemble the installer to automate the installation got a pop-up on the eye — the work had to be suspended. Analysis of the driver I did for about a year and a half ago, at that time, the Internet on the subject was completely empty. Now quickly googling for me now well-known keyword tools and found some scattered information. Despite this, I decided. what is collected in one place the information is still not going to bother with that in this post it is more complete. the Set print First query via snmp appeared MFP HP LaserJet 1536, he decided to start. First you need to understand. it works as...
Далее...