mmm this cake is tasting better every day. I have written a wrapper for findAll in my app/app_controller.php that is available to all controllers.
this exposes the SQL options directly to the URL http://devserver/people/findAllAvail/Person/name_first='jo'/id,name_first,name_last/name_last%20ASC generates and returns an array according to the raw search string, field selection and order in the url... even better, using the path in requestAction I can do more funky stuff with the conditions parameter, such as using something like /name_first LIKE '%ad%'/ which works perfectly... (the browser chokes on that one as a URL - even if you urlencode your %...) I thought the these params had to be single word, url-safe or variable-safe strings... I think this is great. sorry if this is old news to everyone... Are there any security considerations I'm being blind to? (other than exposing the entire contents of my database if I echo these results) --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Cake PHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php -~----------~----~----~----~------~----~------~--~---
