Zend Framework and magic quotes

Zend <a href= Framework & Magic Quotes">it is worth noting that with the release of php 6 this article is not relevant, and yet...

Anyone who has experience with php, probably knows or has heard about the Directive "magic_quotes_gpc"(magic quotes). If flag Directive is set to "On", the automatic escaping of data passed in the $_GET, $_POST, $_COOKIE(and hints abbreviation gpc at the end of directives).

When designing a website on Zend Framework e one of the requirements is off "magic_quotes_gpc". The thing is that Zend Framework itself screens the data and when the Directive "magic_quotes_gpc" is double-escaped, which is not good and beautiful. Problem would not be so acute if all hosts were given the right to change the value of "magic_quotes_gpc". I have repeatedly encountered this problem and found in my opinion a quite elegant solution.



In that case, when the server Directive "magic_quotes_gpc" is strictly set to "On", we will connect the small plug to avoid double-escaping:

/**
* the Plugin removes the shielding.
*
* Used in cases when the server is prohibited to turn off magic_quotes_gpc.
*
* @category Zend_Controller_Plugin
*/
class Singular_Controller_Plugin_Stripmagicquotes extends Zend_Controller_Plugin_Abstract
{
/**
* Called before Zend_Controller_Front enters a dispatch loop.
*
* @param Zend_Controller_Request_Abstract $request
* @return void
*/
public function dispatchLoopStartup(Zend_Controller_Request_Abstract $request)
{
/** included Check if the magic_quotes_gpc Directive */
if (get_magic_quotes_gpc()) {
/** Fetch the parameters */
$params = $request->getParams();
/** Recursively use the method of "exStripSlashes" to each element of the array */
array_walk_recursive($params, array($this 'exStripSlashes'));
/** Set the processed options */
$request- > setParams($params);
}
}

/**
* Removes the escaping characters.
*
* @param mixed $value
* @param mixed $key
* @return void
*/
private function exStripSlashes(&$value, $key)
{
/** Remove the escaping characters */
$value = stripslashes($value);
}
}

* This source code was highlighted with Source Code Highlighter.


Don't forget to rename the class name according to Convention framework and register a plugin:
/** Get the instance of the front controller */
$front = Zend_Controller_Front::getInstance();
/** Register the plugin */
$front- > registerPlugin(new Singular_Controller_Plugin_Stripmagicquotes());

* This source code was highlighted with Source Code Highlighter.


Thank you for your attention, have a good day.
Article based on information from habrahabr.ru

Комментарии

Отправить комментарий

Популярные сообщения из этого блога

When the basin is small, or it's time to choose VPS server

Изображение
Recommendations for the analysis of the characteristics and proper the choice of VDS hosting . Is intended to read the users who need to make a decision on the expediency of transferring web projects with a large load on the web server (forum, media portal, online store) hosting virtual dedicated server. the 1. When the Internet project has outgrown shared hosting the 1.1. What is VDS Virtual dedicated server — VDS (virtual or VPS private server) is created with the help of special programs and technology mini-server, limited in resources, but much more than moschny web hosting fully private and controlled by its owner. the 1.2. Signs of increased load on the hosting In the process of development of the Internet project comes one of three possible situations: the When the site starts to open more than 4 seconds, every day becomes unavailable, and from a technical hosting support come the angry letters about the excess load on the CPU and memory on the web se
Далее...

Performance comparison of hierarchical models, Django and PostgreSQL

Изображение
Good day, dear readers. Today's article will be devoted to the comparison of models of working with hierarchical data in PostgreSQL via Django app. In the article I specifically do not use a clean implementation in the database, because I'm interested in is performance in an environment close to combat. All tests were performed on my data and results are relevant for this data on your data the result may differ from that obtained in the article. Model implementation of the hierarchical structures in the database For working with such structures in PostgreSQL you can use the following modely : the Adjacency model (AM) — model, when the column is stored parent; the Nested Sets (NS) model when paired column stores the range of all sub-elements; the Materialised Path model (MP) model, when the column is stored the full path to the element. Also details about the implementation of hierarchical structures in a relational database, you can read here . To imp
Далее...

From Tomsk to Silicon Valley and Back

Изображение
We have heard many times: "you Sit here in the Tomsk and don't know what is happening on the front lines. That will come to Silicon Valley you will open your eyes to the world." Again I say, you need to go. We planned a trip for January, coinciding with the opening of beta version of our service . A little less than two months later we returned to Russia. And indeed, we have discovered many new things. The most interesting discovery was what is today Silicon Valley is a valley CEOS, marketers, managers and anyone, but not developers. For us it was a big advantage, because we're nerds. We even know how to insert video in Wordpress. With the sound problem, we recommend you to turn it off. But Valley came out pretty good. All the best and just good professionals recruited by Google, Facebook, DropBox, LinkedIn and the hundreds of top companies. There they were provided with comfortable conditions for all criteria. The salary for most engineers is not
Далее...