Rain Framework - Bug Report

Forum / Rain Framework Development / Bug Report / where is the input_filter,how use

+ Reply to Thread

Thread: where is the input_filter,how use

04/23/12 - 03:06 PM

mike

Security

Rain Framework implements the security at many levels.
•The input are sanitized with the input_filter function, which can be used also for validating the input.
•Database queries are managed by the DB class, that use the PDO prepared method to sanitize the varaibles from SQL injection.
•The template engine, has a sandbox, which enables you to loads template from untrusted source, so your designers team can also be an outsource.

04/25/12 - 03:50 AM
Rain Rain Team	Not sure if you are referring to anything in detail, anyway the filtering now is applied only on the DB class (PDO), instead the input are filtered only if you need to. Here is the documentation for the input: http://www.rainframework.com/User-Guide/Helper-Functions/Input/

+ Reply to Thread

Profiler output