Say I get the $id from a url, /controller/action/id and want to use it to do a $this->Model->id = $id.
Is it safe to pass it as it's coming in or do I need to call Sanitize::clean first? The book mentions that if you use cake's ORM you're safe, but I couldn't follow the code enough to find out how it is sanitized :)
--
Like Us on FaceBook https://www.facebook.com/CakePHP
Find us on Twitter http://twitter.com/CakePHP
---
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cake-php+unsubscribe@googlegroups.com.
To post to this group, send email to cake-php@googlegroups.com.
Visit this group at http://groups.google.com/group/cake-php?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment