On Sat, May 31, 2008 at 5:23 PM, Max <[EMAIL PROTECTED]> wrote:
>
> Thanks for your e-mail!
> Users are expected to be familiar with HTML. This templating thing is
> mostly aimed at web developpers. The main goal here is security. I
> want to prevent them from executing php code on the server.
Users insert stuff like {{latest_deals}} in a file - your code translates it
to something like <?php $this->element('latestdeals); ?> and stores in the
view files
The key being your users never directly edit the views which have PHP - you
can maintain a list of {{tags}} and their php equivalents. Anything not in
your list is not replaced.
Have done it for a client and it works wonderfully
HTH
Tarique
--
=============================================================
Cheesecake-Photoblog: http://cheesecake-photoblog.org
PHP for E-Biz: http://sanisoft.com
=============================================================
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
