not-kennethreitz/convore.json
1
0
Fork 0
mirror of https://github.com/not-kennethreitz/convore.json.git synced 2026-06-05 23:20:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
convore.json/groups/php/about-php-oop-standard-and-practices/messages.json
T
Kenneth Reitz add958b068 shuffle things around a bit
2012-02-21 01:15:00 -05:00

1 line
4.5 KiB
JSON
Raw Permalink Blame History

[{"user_id": 8931, "stars": [], "topic_id": 4977, "date_created": 1297625516.9594929, "message": "Please discuss about PHP OOP, Coding Standard and Best Practices here...", "group_id": 391, "id": 92937}, {"user_id": 8327, "stars": [{"date_created": 1297626212.069253, "user_id": 8931}], "topic_id": 4977, "date_created": 1297625957.4212911, "message": "Beware $_REQUEST sanitisation", "group_id": 391, "id": 92959}, {"user_id": 8931, "stars": [], "topic_id": 4977, "date_created": 1297626208.8261189, "message": "$_REQUEST should always be escaped and filtered properly...", "group_id": 391, "id": 92970}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1297630039.3045421, "message": "It should, but just because $_REQUEST is safe it doesn't mean other supers such as get, post and cookie are safe.", "group_id": 391, "id": 93357}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1297630167.605135, "message": "Instead sanitise get, post, cookie etc. How this works depends on settings in php.ini", "group_id": 391, "id": 93395}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1297630120.852041, "message": "observe get['bob'] and post['bob']: get['bob'] === request['bob'] but post['bob'] !== request['bob'], if you've only sanitised request, post could still be dangerous", "group_id": 391, "id": 93385}, {"user_id": 2106, "stars": [], "topic_id": 4977, "date_created": 1297632358.39922, "message": "i never use $_REQUEST to get values", "group_id": 391, "id": 93829}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1297634264.3071091, "message": "Too many people do, my co-workers among them ;(", "group_id": 391, "id": 94065}, {"user_id": 2106, "stars": [], "topic_id": 4977, "date_created": 1297635758.987536, "message": "I would like to listen something interesting about this type of var.", "group_id": 391, "id": 94226}, {"user_id": 2106, "stars": [], "topic_id": 4977, "date_created": 1297635711.5318229, "message": "I think that usage of this variable can be a bit problematic. I read a lot about this variable and i think, that it's better to avoid to use. Why don't use $_GET or $_POST if you want to get variable which can be placed in request?", "group_id": 391, "id": 94221}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1297636245.448549, "message": "The excuses I hear are usually based around the fact that a page will be accessed by get and post, and occasionally data must be remembered from cookies. I'd much rather it got depreciated away and the correct vars be used", "group_id": 391, "id": 94278}, {"user_id": 8931, "stars": [], "topic_id": 4977, "date_created": 1297667180.3997071, "message": "Here is the idea: we always escape and sanitize $_GET, $_POST, $_REQUEST and $_COOKIE.", "group_id": 391, "id": 96749}, {"user_id": 8931, "stars": [], "topic_id": 4977, "date_created": 1297667332.7517331, "message": "$_REQUEST is helpful in many cases, specially when you want to process same variable from both $_GET and $_POST.", "group_id": 391, "id": 96765}, {"user_id": 3683, "stars": [], "topic_id": 4977, "date_created": 1297676162.0588169, "message": "Why would an application have both GET and POST in one page? Not trying to be arrogant, genuinely confused. I've seen this done on some websites.", "group_id": 391, "id": 97438}, {"user_id": 4240, "stars": [], "topic_id": 4977, "date_created": 1297693208.1492269, "message": "@manakmichal I don't think I have ever used $_REQUEST either.", "group_id": 391, "id": 99896}, {"user_id": 14000, "stars": [], "topic_id": 4977, "date_created": 1298248087.304009, "message": "I've never had to use $_REQUEST myself and I've never come across a valid reason to use $_REQUEST in any open source project", "group_id": 391, "id": 155230}, {"user_id": 14000, "stars": [], "topic_id": 4977, "date_created": 1298251128.7090321, "message": "Yeah, I can't see there being a practical use for it in production", "group_id": 391, "id": 155470}, {"user_id": 8327, "stars": [], "topic_id": 4977, "date_created": 1298250931.870059, "message": "I assume the original idea behind it was some sort of session key related laziness. phpbb springs to mind as an example circa 2005, sometimes passing the key with $_GET, sometimes in the $_COOKIE", "group_id": 391, "id": 155468}, {"user_id": 21515, "stars": [], "topic_id": 4977, "date_created": 1300183103.2473869, "message": "I explicitly unset() $_REQUEST to remove the temptation to use it. If you don't know if you're expecting $_GET or $_POST data then you've not designed your code very well.", "group_id": 391, "id": 354373}]
Reference in New Issue View Git Blame Copy Permalink