开发者

Where are the Joomla / Drupal input validation scripts located?

开发者 https://www.devze.com 2023-01-13 01:46 出处：网络

I would like to see how Joomla开发者_Python百科 / Drupal do their validation / security, where are the input validation scripts located?There isn\'t a single/central validation code for user\'s input

相关专题：drupal joomla php security

I would like to see how Joomla开发者_Python百科 / Drupal do their validation / security, where are the input validation scripts located?

There isn't a single/central validation code for user's input in Drupal. Each form as it own validations handlers, search for _validate in the Drupal API. In addition, there is some re-usable validation functions such as valid_url() and valid_email_address(). Drupal also encourage output sanitization with functions such as t(), check_plain() or filter_xss(). Drupal discourage bad-practive regarding SQL injection by favoring placeholders in query string, see db_query().

Drupal: http://api.drupal.org/api/drupal/modules--user--user.module/6

Joomla: http://api.joomla.org/Joomla-Framework/User/_joomla---user---authentication.php.html