Sam Barrow wrote:
On Wed, 2008-02-06 at 16:39 -0800, Stanislav Malyshev wrote:
[snip]
The proposal(s):
1. One way to fix it is to create a new .ini request_order that would
control just _REQUEST.
2. Other solution would be to keep variables_order but drop 'C' parsing
from _REQUEST - i.e. make _REQUEST never include cookies. I don't know
how many people really need cookies together with get/post in REQUEST.
I like this. $_REQUEST is used by me and most PHP developers I know
solely for the purpose of abstracting $_GET and $_POST. But user input
never comes directly from cookies (what user fills in a login form by
setting cookies?), so I don't see a point of including them.
I also like solution #2, I always read cookies using $_COOKIE.
--
Jessie Hernandez
Zend Certified Engineer (http://zend.com/zce.php?c=ZEND006359&r=222727282)
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
